Featured

Why LinkedIn Developed Its Own AI-Powered Security Platform

Featured, LinkedIn, Security Architecture, Security Infrastructure, Vulnerabilities /

Why LinkedIn Developed Its Own AI-Powered Security Platform 2024-08-21 at 18:01 By Kevin Townsend An inside look at how LinkedIn developed an internal AI-assisted vulnerability management system to protect its massive infrastructure and user base. The post Why LinkedIn Developed Its Own AI-Powered Security Platform appeared first on SecurityWeek. This article is an excerpt from […]

React to this headline:

Loading spinner

Why LinkedIn Developed Its Own AI-Powered Security Platform Read More »

Major Backdoor in Millions of RFID Cards Allows Instant Cloning

backdoor, China, Featured, IoT Security, RFID, Vulnerabilities /

Major Backdoor in Millions of RFID Cards Allows Instant Cloning 2024-08-20 at 21:31 By Ryan Naraine Backdoor in millions of contactless cards made by Shanghai Fudan Microelectronics allows instantaneous cloning of RFID smart cards used to open office doors and hotel rooms around the world. The post Major Backdoor in Millions of RFID Cards Allows

React to this headline:

Loading spinner

Major Backdoor in Millions of RFID Cards Allows Instant Cloning Read More »

National Public Data Says Breach Impacts 1.3 Million People

data breach, Data Breaches, Featured, National Public Data, NPD /

National Public Data Says Breach Impacts 1.3 Million People 2024-08-19 at 16:46 By Kevin Townsend National Public Data (NPD) has confirmed suffering a data breach, but the company says the incident only affects 1.3 million people in the US. The post National Public Data Says Breach Impacts 1.3 Million People appeared first on SecurityWeek. This

React to this headline:

Loading spinner

National Public Data Says Breach Impacts 1.3 Million People Read More »

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day

Featured, SolarWinds, Vulnerabilities, Zero-Day /

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day 2024-08-16 at 13:17 By Ionut Arghire The US cybersecurity agency CISA warns that a recent SolarWinds Web Help Desk vulnerability has been exploited in the wild. The post SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day Read More »

Microsoft Warns of Six Windows Zero-Days Being Actively Exploited

exploit, Featured, Microsoft, Patch Tuesday, Vulnerabilities, Windows, Zero-Day /

Microsoft Warns of Six Windows Zero-Days Being Actively Exploited 2024-08-13 at 23:01 By Ryan Naraine Microsoft’s security response team pushed out documentation for almost 90 vulnerabilities across Windows and OS components and marked several flaws in the actively exploited category. The post Microsoft Warns of Six Windows Zero-Days Being Actively Exploited appeared first on SecurityWeek.

React to this headline:

Loading spinner

Microsoft Warns of Six Windows Zero-Days Being Actively Exploited Read More »

Radar/Dispossessor Ransomware Operation Disrupted by Authorities

cybercrime, dismantled, Featured, Radar, Ransomware, takedown, Tracking & Law Enforcement /

Radar/Dispossessor Ransomware Operation Disrupted by Authorities 2024-08-13 at 12:01 By Ionut Arghire Law enforcement agencies in the US, Germany, and the UK have disrupted the Radar/Dispossessor ransomware infrastructure. The post Radar/Dispossessor Ransomware Operation Disrupted by Authorities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Radar/Dispossessor Ransomware Operation Disrupted by Authorities Read More »

Donald Trump’s Campaign Says Its Emails Were Hacked

Cyberwarfare, Featured, Government, hacked, Iran, Trump /

Donald Trump’s Campaign Says Its Emails Were Hacked 2024-08-11 at 06:16 By Associated Press Trump campaign spokesperson Steven Cheung blamed the hack on “foreign sources hostile to the United States.” The post Donald Trump’s Campaign Says Its Emails Were Hacked appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Donald Trump’s Campaign Says Its Emails Were Hacked Read More »

CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug

CrowdStrike, exploit, Featured, Incident Response, Qihoo 360, Vulnerabilities /

CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug 2024-08-08 at 20:46 By Ryan Naraine CrowdStrike dismissed claims that the Falcon EDR sensor bug could be exploited for privilege escalation or remote code execution. The post CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug Read More »

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks

Black Hat, BlackLotus, Featured, Malware & Threats, SafeBreach, software downgrade, Vulnerabilities, Windows Update /

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks 2024-08-07 at 18:16 By Ryan Naraine Researcher showcases hack against Microsoft Windows Update architecture, turning fixed vulnerabilities into zero-days. The post Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks Read More »

Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million

CrowdStrike, Delta, Featured, Incident Response, Microsoft /

Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million 2024-08-07 at 05:16 By Associated Press Microsoft is trying to determine “why other airlines were able to fully restore business operations so much faster than Delta.” The post Microsoft Hits Back at Delta After the Airline Said Last

React to this headline:

Loading spinner

Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million Read More »

CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash

BSOD, CrowdStrike, disaster recovery, Falcon, Featured, Incident Response, Microsoft, Vulnerabilities, Windows /

CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash 2024-08-06 at 21:16 By Ryan Naraine CrowdStrike says the Falcon sensor crash that blue-screened Windows machines was caused by a “confluence” of vulnerabilities and testing gaps. The post CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash Read More »

Google Patches Android Zero-Day Exploited in Targeted Attacks

Android, exploited, Featured, Vulnerabilities, vulnerability, Zero-Day /

Google Patches Android Zero-Day Exploited in Targeted Attacks 2024-08-06 at 11:01 By Eduard Kovacs Google has patched CVE-2024-36971, a high-severity kernel zero-day vulnerability in Android that has been exploited in targeted attacks.  The post Google Patches Android Zero-Day Exploited in Targeted Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Google Patches Android Zero-Day Exploited in Targeted Attacks Read More »

New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous

Featured, kernel, Linux, SLUBStick, Vulnerabilities /

New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous 2024-08-05 at 16:47 By Eduard Kovacs A new Linux kernel exploitation technique named SLUBStick makes heap vulnerabilities more dangerous.  The post New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous Read More »

Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study

data breach, Data Breaches, Featured, Ransomware, report, Uncategorized /

Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study 2024-07-31 at 20:16 By Kevin Townsend The average cost of a data breach jumped to $4.88 million from $4.45 million in 2023, a 10% spike. The post Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study appeared first on SecurityWeek.

React to this headline:

Loading spinner

Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study Read More »

Microsoft Says Azure Outage Caused by DDoS Attack Response

Azure, cloud security, DDoS, Featured, Microsoft, outage /

Microsoft Says Azure Outage Caused by DDoS Attack Response 2024-07-31 at 16:06 By Eduard Kovacs Microsoft’s response to a DDoS attack on Azure amplified the impact of the attack instead of mitigating it, causing outages. The post Microsoft Says Azure Outage Caused by DDoS Attack Response appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Microsoft Says Azure Outage Caused by DDoS Attack Response Read More »

Company Paid Record-Breaking $75 Million to Ransomware Group: Report

Featured, ransom payment, Ransomware /

Company Paid Record-Breaking $75 Million to Ransomware Group: Report 2024-07-31 at 13:46 By Eduard Kovacs Zscaler is aware of a company that paid a record-breaking $75 million ransom to the Dark Angels ransomware group. The post Company Paid Record-Breaking $75 Million to Ransomware Group: Report appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Company Paid Record-Breaking $75 Million to Ransomware Group: Report Read More »

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw

Application Security, Featured, OAuth, Vulnerabilities, XSS /

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw 2024-07-29 at 15:16 By Kevin Townsend Researchers discovered and published details of an XSS attack that could potentially impact millions of websites around the world. The post Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw Read More »

CrowdStrike Explains Why Bad Update Was Not Properly Tested

CrowdStrike, disaster recovery, Endpoint Security, Featured, Incident Response /

CrowdStrike Explains Why Bad Update Was Not Properly Tested 2024-07-24 at 14:16 By Eduard Kovacs CrowdStrike has shared a preliminary incident review, explaining why the update that caused global chaos was not caught by testing.  The post CrowdStrike Explains Why Bad Update Was Not Properly Tested appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

CrowdStrike Explains Why Bad Update Was Not Properly Tested Read More »

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating

Featured, FrostyGoop, ICS malware, ICS/OT, Russia, Ukraine /

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating 2024-07-23 at 13:31 By Eduard Kovacs The FrostyGoop ICS malware was used recently in an attack against a Ukrainian energy firm that resulted in loss of heating for many buildings. The post FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating appeared first on SecurityWeek. This

React to this headline:

Loading spinner

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating Read More »

Microsoft Says 8.5 Million Windows Devices Impacted by CrowdStrike Incident, Publishes Recovery Tool

CrowdStrike, Endpoint Security, Featured, Incident Response, Microsoft, outage, tool /

Microsoft Says 8.5 Million Windows Devices Impacted by CrowdStrike Incident, Publishes Recovery Tool 2024-07-21 at 16:31 By Mike Lennon Microsoft says roughly 8.5 million Windows devices were impacted by the faulty software update from CrowdStrike, and published a tool to help admins through the recovery process. The post Microsoft Says 8.5 Million Windows Devices Impacted

React to this headline:

Loading spinner

Microsoft Says 8.5 Million Windows Devices Impacted by CrowdStrike Incident, Publishes Recovery Tool Read More »

Scroll to Top