2025 - Security Ticks

Meta blocked Distrowatch links on Facebook while running Linux servers

Meta blocked Distrowatch links on Facebook while running Linux servers 2025-01-28 at 14:33 By Liam Proven Popular community site became unmentionable – the irony is thick enough to compile Facebook has lifted a temporary ban preventing users from posting links to popular OS comparison site Distrowatch – after going so far as to lock the […]

React to this headline:

Meta blocked Distrowatch links on Facebook while running Linux servers Read More »

AI SOC Analysts: Propelling SecOps into the future

Uncategorized / SecurityTicks

AI SOC Analysts: Propelling SecOps into the future 2025-01-28 at 14:33 By Triaging and investigating alerts is central to security operations. As SOC teams strive to keep up with ever-increasing alert volumes and complexity, modernizing SOC automation strategies with AI has emerged as a critical solution. This blog explores how an AI SOC Analyst transforms

React to this headline:

AI SOC Analysts: Propelling SecOps into the future Read More »

Critical Vulnerabilities in Node.js Expose Systems to Remote Attacks

Node.js, vulnerability / SecurityTicks

Critical Vulnerabilities in Node.js Expose Systems to Remote Attacks 2025-01-28 at 14:18 By daksh sharma Overview A series of critical security vulnerabilities have been discovered in multiple versions of Node.js, a popular open-source JavaScript runtime used to build scalable network applications. These vulnerabilities, outlined in CERT-In Vulnerability Note CIVN-2025-0011, have been classified as high severity,

React to this headline:

Critical Vulnerabilities in Node.js Expose Systems to Remote Attacks Read More »

Hiya AI Phone detects scammers in real-time

Hiya, Industry news / SecurityTicks

Hiya AI Phone detects scammers in real-time 2025-01-28 at 14:18 By Industry News Hiya has introduced Hiya AI Phone, an AI call assistant mobile app. Designed for busy professionals, Hiya AI Phone acts like a personal assistant, saving time by screening unwanted phone calls, safeguarding against phone scams, and taking notes during calls to ensure

React to this headline:

Hiya AI Phone detects scammers in real-time Read More »

ENGlobal Says Personal Information Accessed in Ransomware Attack

data breach, Data Breaches, ENGlobal, Ransomware / SecurityTicks

ENGlobal Says Personal Information Accessed in Ransomware Attack 2025-01-28 at 14:00 By Ionut Arghire ENGlobal has informed the SEC that personal information was compromised in a November 2024 ransomware attack. The post ENGlobal Says Personal Information Accessed in Ransomware Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

ENGlobal Says Personal Information Accessed in Ransomware Attack Read More »

40 years ago, classified Shuttle mission foreshadowed Challenger’s fatal flaw

Uncategorized / SecurityTicks

40 years ago, classified Shuttle mission foreshadowed Challenger’s fatal flaw 2025-01-28 at 13:49 By Richard Speed O-ring erosion on Discovery would have disastrous effects a year later It has been 40 years since NASA launched the first dedicated Department of Defense Space Shuttle mission, after which engineers spotted O-ring seal defficiencies that would doom Challenger

React to this headline:

40 years ago, classified Shuttle mission foreshadowed Challenger’s fatal flaw Read More »

SonicWall Confirms Exploitation of New SMA Zero-Day

exploited, SMA, SonicWall, Vulnerabilities, Zero-Day / SecurityTicks

SonicWall Confirms Exploitation of New SMA Zero-Day 2025-01-28 at 13:33 By Eduard Kovacs SonicWall has confirmed that an SMA 1000 zero-day tracked as CVE-2025-23006 has been exploited in the wild. The post SonicWall Confirms Exploitation of New SMA Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

SonicWall Confirms Exploitation of New SMA Zero-Day Read More »

Windows 10’s demise nears, but Linux is forever

Uncategorized / SecurityTicks

Windows 10’s demise nears, but Linux is forever 2025-01-28 at 13:18 By Steven J. Vaughan-Nichols If you want a desktop that’s secure and reliable, forget about Microsoft Opinion Come October 14, 2025, Windows 10 support dies. Despite that, more users than ever are using Windows 10 rather than moving to Windows 11.… This article is

React to this headline:

Windows 10’s demise nears, but Linux is forever Read More »

Apple zero-day vulnerability exploited to target iPhone users (CVE-2025-24085)

0-day, apple, Don't miss, Hot stuff, iOS, iPad, macOS, News, security update / SecurityTicks

Apple zero-day vulnerability exploited to target iPhone users (CVE-2025-24085) 2025-01-28 at 13:18 By Zeljka Zorz Apple has shipped a fix for a zero-day vulnerability (CVE-2025-24085) that is being leveraged by attackers against iPhone users. About CVE-2025-24085 CVE-2025-24085 is a use after free bug in CoreMedia, a framework used by Apple devices for the processing of

React to this headline:

Apple zero-day vulnerability exploited to target iPhone users (CVE-2025-24085) Read More »

Ransomware Targets ESXi Systems via Stealthy SSH Tunnels for C2 Operations

Uncategorized / SecurityTicks

Ransomware Targets ESXi Systems via Stealthy SSH Tunnels for C2 Operations 2025-01-28 at 13:18 By Cybersecurity researchers have found that ransomware attacks targeting ESXi systems are also leveraging the access to repurpose the appliances as a conduit to tunnel traffic to command-and-control (C2) infrastructure and stay under the radar. “ESXi appliances, which are unmonitored, are

React to this headline:

Ransomware Targets ESXi Systems via Stealthy SSH Tunnels for C2 Operations Read More »

How Long Does It Take Hackers to Crack Modern Hashing Algorithms?

Uncategorized / SecurityTicks

How Long Does It Take Hackers to Crack Modern Hashing Algorithms? 2025-01-28 at 13:18 By While passwords remain the first line of defense for protecting user accounts against unauthorized access, the methods for creating strong passwords and protecting them are continually evolving. For example, NIST password recommendations are now prioritizing password length over complexity. Hashing,

React to this headline:

How Long Does It Take Hackers to Crack Modern Hashing Algorithms? Read More »

Apple Patches First Exploited iOS Zero-Day of 2025

apple, exploited, Featured, iOS, Mobile & Wireless, Vulnerabilities, Zero-Day / SecurityTicks

Apple Patches First Exploited iOS Zero-Day of 2025 2025-01-28 at 13:03 By Ionut Arghire Apple has released fixes for dozens of vulnerabilities in its mobile and desktop products, including an iOS zero-day exploited in attacks. The post Apple Patches First Exploited iOS Zero-Day of 2025 appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Apple Patches First Exploited iOS Zero-Day of 2025 Read More »

Why does the UK keep getting beaten up by IT suppliers?

Uncategorized / SecurityTicks

Why does the UK keep getting beaten up by IT suppliers? 2025-01-28 at 12:19 By Lindsay Clark Tech and commercial functions need to get in shape for the challenges ahead It’s a line Brits love to quote: “You’re a big man, but you’re in bad shape. With me, it’s a full-time job. Now, behave yourself.”

React to this headline:

Why does the UK keep getting beaten up by IT suppliers? Read More »

Protecting organizations: Password smarter, not harder

Uncategorized / SecurityTicks

Protecting organizations: Password smarter, not harder 2025-01-28 at 12:03 By Outdated security practices, like certain password policies, can create more problems than they solve. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Protecting organizations: Password smarter, not harder Read More »

phpMyAdmin 5.2.2 Addresses Critical XSS and Library Vulnerabilities

PHPMyAdmin, vulnerability / SecurityTicks

phpMyAdmin 5.2.2 Addresses Critical XSS and Library Vulnerabilities 2025-01-28 at 11:48 By daksh sharma Overview phpMyAdmin, a popular web-based tool for managing MySQL and MariaDB databases, has recently released version 5.2.2, addressing multiple vulnerabilities that posed a medium severity risk. This widely-used tool is a basis for database administrators, offering strong features and ease of

React to this headline:

phpMyAdmin 5.2.2 Addresses Critical XSS and Library Vulnerabilities Read More »

Enlightenment reaches 0.27, continuing its quiet but persistent journey

Uncategorized / SecurityTicks

Enlightenment reaches 0.27, continuing its quiet but persistent journey 2025-01-28 at 11:34 By Liam Proven An elder returns, for those still seeking it Enlightenment is one of the granddaddies of Linux desktops, and after a couple of years, the project has a shiny new release.… This article is an excerpt from The Register View Original

React to this headline:

Enlightenment reaches 0.27, continuing its quiet but persistent journey Read More »

Apple plugs security hole in its iThings that’s already been exploited in iOS

Uncategorized / SecurityTicks

Apple plugs security hole in its iThings that’s already been exploited in iOS 2025-01-28 at 10:20 By Jessica Lyons Cupertino kicks off the year with a zero-day Apple has plugged a security hole in the software at the heart of its iPhones, iPads, Vision Pro goggles, Apple TVs and macOS Sequoia Macs, warning some miscreants have

React to this headline:

Apple plugs security hole in its iThings that’s already been exploited in iOS Read More »

Compliance Scorecard Version 7 simplifies compliance management for MSPs

Compliance Scorecard, Industry news / SecurityTicks

Compliance Scorecard Version 7 simplifies compliance management for MSPs 2025-01-28 at 10:20 By Industry News Compliance Scorecard released Compliance Scorecard Version 7. This latest release is designed to seamlessly integrate compliance into cybersecurity offerings, delivering new features that simplify and enhance compliance management for MSPs and their clients. Compliance Scorecard Version 7 builds on its

React to this headline:

Compliance Scorecard Version 7 simplifies compliance management for MSPs Read More »

Top-Rated Chinese AI App DeepSeek Limits Registrations Amid Cyberattacks

Uncategorized / SecurityTicks

Top-Rated Chinese AI App DeepSeek Limits Registrations Amid Cyberattacks 2025-01-28 at 08:48 By DeepSeek, the Chinese AI startup that has captured much of the artificial intelligence (AI) buzz in recent days, said it’s restricting registrations on the service, citing malicious attacks. “Due to large-scale malicious attacks on DeepSeek’s services, we are temporarily limiting registrations to

React to this headline:

Top-Rated Chinese AI App DeepSeek Limits Registrations Amid Cyberattacks Read More »

Celebrating Data Privacy Day: Experts share data protection insights

Uncategorized / SecurityTicks

Celebrating Data Privacy Day: Experts share data protection insights 2025-01-28 at 07:18 By This Data Privacy Day, cybersecurity experts share insights on data protection best practices. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Celebrating Data Privacy Day: Experts share data protection insights Read More »