Has Sony been hacked again? 26/09/2023 at 13:19 By Zeljka Zorz Ransomed.vc, a relatively new ransomware / cyber extortion group, claims to have hacked Sony and made off with valuable data. Sony allegedly hacked and its data held for ransom “We have successfully compromissed all of sony systems. We wont ransom them! we will sell […]
React to this headline:
Has Sony been hacked again? Read More »
Are developers giving enough thought to prompt injection threats when building code? 26/09/2023 at 08:32 By Help Net Security With National Coding Week behind us, the development community has had its annual moment of collective reflection and focus on emerging technologies that are shaping the industry. Among these, large language models (LLMs) and “generative AI”
React to this headline:
Are developers giving enough thought to prompt injection threats when building code? Read More »
5 free vulnerability scanners you should check out 26/09/2023 at 08:02 By Help Net Security Vulnerability scanners delve into systems to uncover security gaps. The primary mission? To fortify organizations against breaches and shield sensitive data from exposure. Beyond merely pinpointing weaknesses, vulnerability scanning is a proactive measure to anticipate potential attacker entry points. The
React to this headline:
5 free vulnerability scanners you should check out Read More »
MITRE ATT&CK project leader on why the framework remains vital for cybersecurity pros 26/09/2023 at 07:32 By Mirko Zorz MITRE ATT&CK, a common language for cybersecurity professionals to communicate with each other and better understand real-world adversary behaviors, celebrates its 10th anniversary this fall. In this Help Net Security interview, project leader Adam Pennington discusses
React to this headline:
MITRE ATT&CK project leader on why the framework remains vital for cybersecurity pros Read More »
IT workers see generative AI as a serious threat to their profession 26/09/2023 at 06:01 By Help Net Security While many IT workers see the productivity benefits of AI, 56% believe it benefits employers more than employees, according to Ivanti. Additionally, 63% are concerned generative AI tools might take their job in the next five
React to this headline:
IT workers see generative AI as a serious threat to their profession Read More »
National Student Clearinghouse MOVEit breach impacts nearly 900 schools 25/09/2023 at 14:31 By Helga Labus US educational nonprofit organization National Student Clearinghouse (NSC) has revealed that the breach of its MOVEit server ended up affecting almost 900 colleges and universities, and resulted in the theft of personal information of their students. The National Student Clearinghouse
React to this headline:
National Student Clearinghouse MOVEit breach impacts nearly 900 schools Read More »
BinDiff: Open-source comparison tool for binary files 25/09/2023 at 13:01 By Help Net Security BinDiff is a binary file comparison tool to find differences and similarities in disassembled code quickly. It was made open source today. With BinDiff, you can identify and isolate fixes for vulnerabilities in vendor-supplied patches. You can also port symbols and
React to this headline:
BinDiff: Open-source comparison tool for binary files Read More »
Hands-on threat simulations: empower cybersecurity teams to confidently combat threats 25/09/2023 at 08:05 By Help Net Security Security processes are increasingly automated which has led some businesses to deprioritize developing their security teams’ defense skills. While antivirus and non-human generated threat detections efficiently identify vulnerabilities, they cannot detect every single threat. With the rising number
React to this headline:
Hands-on threat simulations: empower cybersecurity teams to confidently combat threats Read More »
How global enterprises navigate the complex world of data privacy 25/09/2023 at 07:38 By Mirko Zorz In this Help Net Security interview, Evelyn de Souza, Head of Privacy Compliance, Oracle SaaS Cloud, talks about the constant efforts required to keep up with privacy laws in each country, and ensuring compliance across the entire organization. She
React to this headline:
How global enterprises navigate the complex world of data privacy Read More »
Balancing cybersecurity with convenience and progress 25/09/2023 at 07:02 By Help Net Security Changing approaches to cybersecurity have led to slow but steady progress in defense and protection. Still, competing interests create a growing challenge for cybersecurity decision makers and practitioners, according to CompTIA. The state of cybersecurity Most business and technology professionals feel that
React to this headline:
Balancing cybersecurity with convenience and progress Read More »
Current ransomware defenses efforts are not working 25/09/2023 at 06:31 By Help Net Security Despite some positive developments, the impact of ransomware attacks remains high, according to SpyCloud. Infostealer infections preceded 22% of ransomware events for North American and European ransomware victim companies in 2023 – with common infostealers such as Raccoon, Vidar, and Redline
React to this headline:
Current ransomware defenses efforts are not working Read More »
Despite rising insider risk costs, budgets are being wasted in the wrong places 25/09/2023 at 06:02 By Help Net Security The cost of an insider risk is the highest it’s ever been, as organizations spend more time than ever trying to contain insider incidents, according to DTEX Systems. The average annual cost of an insider
React to this headline:
Despite rising insider risk costs, budgets are being wasted in the wrong places Read More »
Week in review: 18 free Microsoft Azure cybersecurity resources, K8 vulnerability allows RCE 24/09/2023 at 11:02 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: LLM Guard: Open-source toolkit for securing Large Language Models LLM Guard is a toolkit designed to fortify the security of
React to this headline:
GitLab fixes critical vulnerability, patch now! (CVE-2023-5009) 22/09/2023 at 13:31 By Helga Labus GitLab has fixed a critical vulnerability (CVE-2023-5009) in the Enterprise Edition (EE) and Community Edition (CE) of its widely used DevOps platform. They flaw may allow a threat actor to abuse scan execution policies to run pipelines as another user. About the
React to this headline:
GitLab fixes critical vulnerability, patch now! (CVE-2023-5009) Read More »
Apple fixes 3 zero-day vulnerabilities exploited to compromise iPhones 22/09/2023 at 13:19 By Zeljka Zorz Apple has released updates for iOS and iPadOS, macOS, watchOS, and Safari to fix three zero-day vulnerabilities (CVE-2023-41992, CVE-2023-41991, CVE-2023-41993) exploited “against versions of iOS before iOS 16.7.” Bill Marczak of The Citizen Lab at The University of Toronto’s Munk
React to this headline:
Apple fixes 3 zero-day vulnerabilities exploited to compromise iPhones Read More »
Why more security doesn’t mean more effective compliance 22/09/2023 at 08:31 By Help Net Security Financial institutions have always been a valuable target for cyberattacks. That’s partly why banking and financial institutions are heavily regulated and have more compliance requirements than those in most other industries. A slew of new rules have been put in
React to this headline:
Why more security doesn’t mean more effective compliance Read More »
New infosec products of the week: September 22, 2023 22/09/2023 at 08:01 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from 1Password, Dig Security, Laiyer.ai, Viavi Solutions, and Wing Security. 1Password introduces mobile support for passkeys 1Password customers can now create, manage, and sign in
React to this headline:
New infosec products of the week: September 22, 2023 Read More »
Ransomware cyber insurance claims up by 27% 22/09/2023 at 07:31 By Help Net Security Overall cyber insurance claims frequency increased by 12% in the first half of 2023, according to Coalition. Increase in ransomware claims frequency Coalition found that both claims frequency and severity rose for businesses in early 2023 across all revenue bands. Companies
React to this headline:
Ransomware cyber insurance claims up by 27% Read More »
Code alterations more prevalent in Android apps than iOS 22/09/2023 at 07:01 By Help Net Security 57% of all monitored apps are under attack, with gaming (63%) and FinServ (62%) apps facing the highest risk, according to Digital.ai. The study found no correlation between an app’s popularity and likelihood of being attacked but found Android
React to this headline:
Code alterations more prevalent in Android apps than iOS Read More »
IT pros told to accept burnout as normal part of their job 22/09/2023 at 06:31 By Help Net Security The vast majority of IT security professionals admit stress has led them and peers to make errors that have caused data breaches, according to Devo Technology. Recent estimates put the shortage of cybersecurity professionals at 3.5
React to this headline:
IT pros told to accept burnout as normal part of their job Read More »