$200,000 Awarded at Pwn2Own 2024 for Tesla Hack 2024-03-21 at 11:46 By Eduard Kovacs Participants earned a total of $732,500 on the first day of Pwn2Own Vancouver 2024 for hacking a Tesla, operating systems, and other software. The post $200,000 Awarded at Pwn2Own 2024 for Tesla Hack appeared first on SecurityWeek. This article is an […]
$200,000 Awarded at Pwn2Own 2024 for Tesla Hack Read More »
300,000 Systems Vulnerable to New Loop DoS Attack 2024-03-20 at 12:01 By Eduard Kovacs Academic researchers describe a new application-layer loop DoS attack affecting Broadcom, Honeywell, Microsoft and MikroTik. The post 300,000 Systems Vulnerable to New Loop DoS Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
300,000 Systems Vulnerable to New Loop DoS Attack Read More »
New Attack Shows Risks of Browsers Giving Websites Access to GPU 2024-03-18 at 15:17 By Eduard Kovacs Researchers demonstrate remote GPU cache side-channel attack from within browsers against AMD and NVIDIA graphics cards. The post New Attack Shows Risks of Browsers Giving Websites Access to GPU appeared first on SecurityWeek. This article is an excerpt
New Attack Shows Risks of Browsers Giving Websites Access to GPU Read More »
IMF Emails Hacked 2024-03-18 at 10:28 By Eduard Kovacs The International Monetary Fund (IMF) detects a cybersecurity incident that involved nearly a dozen email accounts getting hacked. The post IMF Emails Hacked appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Threat Detection Report: Cloud Attacks Soar, Mac Threats and Malvertising Escalate 2024-03-15 at 13:10 By Kevin Townsend Red Canary’s 2024 Threat Detection Report is based on analysis of almost 60,000 threats across 216 petabytes of telemetry from over 1,000 customers’ endpoints. The post Threat Detection Report: Cloud Attacks Soar, Mac Threats and Malvertising Escalate appeared
Threat Detection Report: Cloud Attacks Soar, Mac Threats and Malvertising Escalate Read More »
Cyber Madness Bracket Challenge – Register to Play 2024-03-14 at 14:01 By Mike Lennon SecurityWeek’s Cyber Madness Bracket Challenge is a contest designed to bring the community together in a fun, competitive way through one of America’s top sporting events. The post Cyber Madness Bracket Challenge – Register to Play appeared first on SecurityWeek. This
Cyber Madness Bracket Challenge – Register to Play Read More »
Major CPU, Software Vendors Impacted by New GhostRace Attack 2024-03-13 at 12:33 By Eduard Kovacs CPU makers Intel, AMD, Arm and IBM, as well as software vendors, are impacted by a new speculative race condition (SRC) attack named GhostRace. The post Major CPU, Software Vendors Impacted by New GhostRace Attack appeared first on SecurityWeek. This
Major CPU, Software Vendors Impacted by New GhostRace Attack Read More »
Exploited Building Access System Vulnerability Patched 5 Years After Disclosure 2024-03-12 at 13:18 By Eduard Kovacs Vulnerabilities affecting a Nice Linear physical access product, including an exploited flaw, patched five years after their disclosure. The post Exploited Building Access System Vulnerability Patched 5 Years After Disclosure appeared first on SecurityWeek. This article is an excerpt
Exploited Building Access System Vulnerability Patched 5 Years After Disclosure Read More »
Critical TeamCity Vulnerability Exploitation Started Immediately After Disclosure 2024-03-07 at 13:36 By Eduard Kovacs Critical TeamCity authentication bypass vulnerability CVE-2024-27198 exploited in the wild after details were disclosed. The post Critical TeamCity Vulnerability Exploitation Started Immediately After Disclosure appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Critical TeamCity Vulnerability Exploitation Started Immediately After Disclosure Read More »
CrowdStrike to Acquire Flow Security 2024-03-06 at 05:03 By SecurityWeek News CrowdStrike says the acquisition of Flow Security will expand its cloud security capabilities with Data Security Posture Management. The post CrowdStrike to Acquire Flow Security appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
CrowdStrike to Acquire Flow Security Read More »
Zeek Security Tool Vulnerabilities Allow ICS Network Hacking 2024-03-05 at 14:02 By Eduard Kovacs Vulnerabilities in a plugin for the Zeek network security monitoring tool can be exploited in attacks aimed at ICS environments. The post Zeek Security Tool Vulnerabilities Allow ICS Network Hacking appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
Zeek Security Tool Vulnerabilities Allow ICS Network Hacking Read More »
Remote Stuxnet-Style Attack Possible With Web-Based PLC Malware: Researchers 2024-03-04 at 14:18 By Eduard Kovacs Researchers demonstrate that remote Stuxnet-style attacks are possible against many modern PLCs using web-based malware. The post Remote Stuxnet-Style Attack Possible With Web-Based PLC Malware: Researchers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View
Remote Stuxnet-Style Attack Possible With Web-Based PLC Malware: Researchers Read More »
Georgia’s Largest County Is Still Repairing Damage From January Cyberattack 2024-03-03 at 15:52 By Associated Press Georgia’s largest county is still repairing damage inflicted on its government offices by a cyberattack in January 2024. The post Georgia’s Largest County Is Still Repairing Damage From January Cyberattack appeared first on SecurityWeek. This article is an excerpt
Georgia’s Largest County Is Still Repairing Damage From January Cyberattack Read More »
Pentagon Leak Suspect Jack Teixeira Expected to Plead Guilty in Federal Case 2024-03-02 at 14:47 By Associated Press The Air National Guardsman accused of leaking highly classified military documents on social media is expected to plead guilty in his federal case. The post Pentagon Leak Suspect Jack Teixeira Expected to Plead Guilty in Federal Case
Pentagon Leak Suspect Jack Teixeira Expected to Plead Guilty in Federal Case Read More »
CISA Warns of Windows Streaming Service Vulnerability Exploitation 2024-03-01 at 16:01 By Ionut Arghire CISA says a high-severity elevation of privilege vulnerability in Microsoft Streaming Service is actively exploited in the wild. The post CISA Warns of Windows Streaming Service Vulnerability Exploitation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed
CISA Warns of Windows Streaming Service Vulnerability Exploitation Read More »
Windows Zero-Day Exploited by North Korean Hackers in Rootkit Attack 2024-02-29 at 13:46 By Eduard Kovacs North Korean group Lazarus exploited AppLocker driver zero-day CVE-2024-21338 for privilege escalation in attacks involving FudModule rootkit. The post Windows Zero-Day Exploited by North Korean Hackers in Rootkit Attack appeared first on SecurityWeek. This article is an excerpt from
Windows Zero-Day Exploited by North Korean Hackers in Rootkit Attack Read More »
Intel Core Ultra vPro Platform Brings New Security Features 2024-02-28 at 14:52 By Eduard Kovacs Intel announces new and improved security features with the latest vPro platform and Core Ultra processors. The post Intel Core Ultra vPro Platform Brings New Security Features appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed
Intel Core Ultra vPro Platform Brings New Security Features Read More »
NIST Cybersecurity Framework 2.0 Officially Released 2024-02-27 at 13:53 By Eduard Kovacs NIST releases Cybersecurity Framework 2.0, the first major update since the creation of the CSF a decade ago. The post NIST Cybersecurity Framework 2.0 Officially Released appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
NIST Cybersecurity Framework 2.0 Officially Released Read More »
LockBit Ransomware Gang Resurfaces With New Site 2024-02-26 at 15:56 By Ionut Arghire The LockBit ransomware operators announce a new leak site as they try to restore credibility after law enforcement takedown. The post LockBit Ransomware Gang Resurfaces With New Site appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View
LockBit Ransomware Gang Resurfaces With New Site Read More »
‘SlashAndGrab’ ScreenConnect Vulnerability Widely Exploited for Malware Delivery 2024-02-23 at 14:31 By Eduard Kovacs ConnectWise ScreenConnect vulnerability tracked as CVE-2024-1709 and SlashAndGrab exploited to deliver ransomware and other malware. The post ‘SlashAndGrab’ ScreenConnect Vulnerability Widely Exploited for Malware Delivery appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
‘SlashAndGrab’ ScreenConnect Vulnerability Widely Exploited for Malware Delivery Read More »