Featured

CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug

CrowdStrike, exploit, Featured, Incident Response, Qihoo 360, Vulnerabilities /

CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug 2024-08-08 at 20:46 By Ryan Naraine CrowdStrike dismissed claims that the Falcon EDR sensor bug could be exploited for privilege escalation or remote code execution. The post CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug appeared first on SecurityWeek. This article is an excerpt from […]

React to this headline:

Loading spinner

CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug Read More »

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks

Black Hat, BlackLotus, Featured, Malware & Threats, SafeBreach, software downgrade, Vulnerabilities, Windows Update /

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks 2024-08-07 at 18:16 By Ryan Naraine Researcher showcases hack against Microsoft Windows Update architecture, turning fixed vulnerabilities into zero-days. The post Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks Read More »

Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million

CrowdStrike, Delta, Featured, Incident Response, Microsoft /

Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million 2024-08-07 at 05:16 By Associated Press Microsoft is trying to determine “why other airlines were able to fully restore business operations so much faster than Delta.” The post Microsoft Hits Back at Delta After the Airline Said Last

React to this headline:

Loading spinner

Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million Read More »

CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash

BSOD, CrowdStrike, disaster recovery, Falcon, Featured, Incident Response, Microsoft, Vulnerabilities, Windows /

CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash 2024-08-06 at 21:16 By Ryan Naraine CrowdStrike says the Falcon sensor crash that blue-screened Windows machines was caused by a “confluence” of vulnerabilities and testing gaps. The post CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash Read More »

Google Patches Android Zero-Day Exploited in Targeted Attacks

Android, exploited, Featured, Vulnerabilities, vulnerability, Zero-Day /

Google Patches Android Zero-Day Exploited in Targeted Attacks 2024-08-06 at 11:01 By Eduard Kovacs Google has patched CVE-2024-36971, a high-severity kernel zero-day vulnerability in Android that has been exploited in targeted attacks.  The post Google Patches Android Zero-Day Exploited in Targeted Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Google Patches Android Zero-Day Exploited in Targeted Attacks Read More »

New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous

Featured, kernel, Linux, SLUBStick, Vulnerabilities /

New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous 2024-08-05 at 16:47 By Eduard Kovacs A new Linux kernel exploitation technique named SLUBStick makes heap vulnerabilities more dangerous.  The post New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous Read More »

Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study

data breach, Data Breaches, Featured, Ransomware, report, Uncategorized /

Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study 2024-07-31 at 20:16 By Kevin Townsend The average cost of a data breach jumped to $4.88 million from $4.45 million in 2023, a 10% spike. The post Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study appeared first on SecurityWeek.

React to this headline:

Loading spinner

Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study Read More »

Microsoft Says Azure Outage Caused by DDoS Attack Response

Azure, cloud security, DDoS, Featured, Microsoft, outage /

Microsoft Says Azure Outage Caused by DDoS Attack Response 2024-07-31 at 16:06 By Eduard Kovacs Microsoft’s response to a DDoS attack on Azure amplified the impact of the attack instead of mitigating it, causing outages. The post Microsoft Says Azure Outage Caused by DDoS Attack Response appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Microsoft Says Azure Outage Caused by DDoS Attack Response Read More »

Company Paid Record-Breaking $75 Million to Ransomware Group: Report

Featured, ransom payment, Ransomware /

Company Paid Record-Breaking $75 Million to Ransomware Group: Report 2024-07-31 at 13:46 By Eduard Kovacs Zscaler is aware of a company that paid a record-breaking $75 million ransom to the Dark Angels ransomware group. The post Company Paid Record-Breaking $75 Million to Ransomware Group: Report appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Company Paid Record-Breaking $75 Million to Ransomware Group: Report Read More »

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw

Application Security, Featured, OAuth, Vulnerabilities, XSS /

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw 2024-07-29 at 15:16 By Kevin Townsend Researchers discovered and published details of an XSS attack that could potentially impact millions of websites around the world. The post Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw Read More »

CrowdStrike Explains Why Bad Update Was Not Properly Tested

CrowdStrike, disaster recovery, Endpoint Security, Featured, Incident Response /

CrowdStrike Explains Why Bad Update Was Not Properly Tested 2024-07-24 at 14:16 By Eduard Kovacs CrowdStrike has shared a preliminary incident review, explaining why the update that caused global chaos was not caught by testing.  The post CrowdStrike Explains Why Bad Update Was Not Properly Tested appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

CrowdStrike Explains Why Bad Update Was Not Properly Tested Read More »

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating

Featured, FrostyGoop, ICS malware, ICS/OT, Russia, Ukraine /

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating 2024-07-23 at 13:31 By Eduard Kovacs The FrostyGoop ICS malware was used recently in an attack against a Ukrainian energy firm that resulted in loss of heating for many buildings. The post FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating appeared first on SecurityWeek. This

React to this headline:

Loading spinner

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating Read More »

Microsoft Says 8.5 Million Windows Devices Impacted by CrowdStrike Incident, Publishes Recovery Tool

CrowdStrike, Endpoint Security, Featured, Incident Response, Microsoft, outage, tool /

Microsoft Says 8.5 Million Windows Devices Impacted by CrowdStrike Incident, Publishes Recovery Tool 2024-07-21 at 16:31 By Mike Lennon Microsoft says roughly 8.5 million Windows devices were impacted by the faulty software update from CrowdStrike, and published a tool to help admins through the recovery process. The post Microsoft Says 8.5 Million Windows Devices Impacted

React to this headline:

Loading spinner

Microsoft Says 8.5 Million Windows Devices Impacted by CrowdStrike Incident, Publishes Recovery Tool Read More »

CrowdStrike Provides Remediation Guidance After Software Update Causes Worldwide IT Chaos

CrowdStrike, Featured, Incident Response, outage, Windows /

CrowdStrike Provides Remediation Guidance After Software Update Causes Worldwide IT Chaos 2024-07-20 at 17:01 By Mike Lennon CrowdStrike on Saturday provided technical information and remediation guidance to help organizations impacted by the faulty software update that trigged massive IT outages across the globe on Friday.   The post CrowdStrike Provides Remediation Guidance After Software Update

React to this headline:

Loading spinner

CrowdStrike Provides Remediation Guidance After Software Update Causes Worldwide IT Chaos Read More »

Bad CrowdStrike Update Linked to Major IT Outages Worldwide

BSOD, buggy update, CrowdStrike, Featured, Incident Response, Microsoft /

Bad CrowdStrike Update Linked to Major IT Outages Worldwide 2024-07-19 at 14:01 By Eduard Kovacs Organizations worldwide are reporting major outages due to Windows system crashes caused by a bad CrowdStrike update. The post Bad CrowdStrike Update Linked to Major IT Outages Worldwide appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Bad CrowdStrike Update Linked to Major IT Outages Worldwide Read More »

Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says

Featured, Military, Tracking & Law Enforcement /

Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says 2024-07-18 at 16:01 By Associated Press Teixeira, who was part of the 102nd Intelligence Wing at Otis Air National Guard Base in Massachusetts, worked as a cyber transport systems specialist. The post Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says appeared

React to this headline:

Loading spinner

Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says Read More »

Rite Aid Says Hack Impacts 2.2M People as Ransomware Gang Threatens to Leak Data

data breach, Data Breaches, Featured, Ransomware /

Rite Aid Says Hack Impacts 2.2M People as Ransomware Gang Threatens to Leak Data 2024-07-17 at 11:46 By Eduard Kovacs Pharmacy chain Rite Aid says 2.2 million people are impacted by a recent data breach for which the RansomHub group has taken credit. The post Rite Aid Says Hack Impacts 2.2M People as Ransomware Gang

React to this headline:

Loading spinner

Rite Aid Says Hack Impacts 2.2M People as Ransomware Gang Threatens to Leak Data Read More »

Kaspersky Leaving US Following Government Ban

Featured, Government, Kaspersky, layoffs, Management & Strategy, Russia /

Kaspersky Leaving US Following Government Ban 2024-07-16 at 13:31 By Eduard Kovacs Kaspersky is shutting down operations in the US and laying off employees following the recent Commerce Department ban. The post Kaspersky Leaving US Following Government Ban appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

Kaspersky Leaving US Following Government Ban Read More »

AT&T Data Breach: ‘Nearly All’ Wireless Customers Exposed in Massive Hack

AT&T, data breach, Data Breaches, Featured /

AT&T Data Breach: ‘Nearly All’ Wireless Customers Exposed in Massive Hack 2024-07-12 at 16:01 By Mike Lennon Data breach exposed records of call and text interactions for nearly all AT&T’s wireless customers and has been linked to the recent attacks targeting Snowflake customers. The post AT&T Data Breach: ‘Nearly All’ Wireless Customers Exposed in Massive

React to this headline:

Loading spinner

AT&T Data Breach: ‘Nearly All’ Wireless Customers Exposed in Massive Hack Read More »

Can AI be Meaningfully Regulated, or is Regulation a Deceitful Fudge?

AI, Artificial Intelligence, ChatGPT, Featured, generative AI, Government, Microsoft, OpenAI, Regulations /

Can AI be Meaningfully Regulated, or is Regulation a Deceitful Fudge? 2024-07-10 at 16:46 By Kevin Townsend Few people understand AI, nor how to use nor control it, nor where it is going. Yet politicians wish to regulate it. The post Can AI be Meaningfully Regulated, or is Regulation a Deceitful Fudge? appeared first on

React to this headline:

Loading spinner

Can AI be Meaningfully Regulated, or is Regulation a Deceitful Fudge? Read More »

Scroll to Top