Uncategorized

Labor watchdog wants SpaceX’s gag clauses to go the way of its exploding rockets 2024-03-23 at 01:02 By Thomas Claburn This is why Big Biz is trying to dismantle America’s crucial regulators The US National Labor Relations Board (NLRB) has challenged SpaceX’s severance agreements, alleging the paperwork unlawfully limits what staff can say and do […]

React to this headline:

Chinese snoops use F5, ConnectWise bugs to sell access into top US, UK networks 2024-03-23 at 00:17 By Jessica Lyons Crew may well be working under contract for Beijing Chinese spies exploited a couple of critical-severity bugs in F5 and ConnectWise equipment earlier this year to sell access to compromised US defense organizations, UK government

React to this headline:

Uncle Sam wants to know how big airlines use passenger data 2024-03-22 at 20:16 By Jude Karabus ‘Problematic’ carriers can look forward to scrutiny, fines, and new rules Ever suspected an airline was using your data to upsell, overcharge, target you with ads, or was selling it to third parties? Worried about how secure their

React to this headline:

3 million doors open to uninvited guests in keycard exploit 2024-03-22 at 19:03 By Connor Jones As months go by without fixes, hotels take the scenic route to securing rooms Around 3 million doors protected by popular keycard locks are thought to be vulnerable to security flaws that allow miscreants to quickly slip into locked

React to this headline:

UN unanimously adopts ambitious AI resolution, sans teeth 2024-03-22 at 18:32 By Brandon Vigliarolo ‘Safe, secure and trustworthy’ AI a must, says document, but nothing in it ensures anyone plays along The United Nations has unanimously adopted a resolution aimed at establishing international AI development standards.… This article is an excerpt from The Register View

React to this headline:

Hardware-level Apple Silicon vulnerability can leak cryptographic keys 2024-03-22 at 17:18 By Brandon Vigliarolo Short of rearchitecting hardware, the fix will seriously degrade performance Apple is having its own Meltdown/Spectre moment with a new side-channel vulnerability found in the architecture of Apple Silicon processors that gives malicious apps the ability to extract cryptographic keys. … This

React to this headline:

New StrelaStealer Phishing Attacks Hit Over 100 Organizations in E.U. and U.S. 2024-03-22 at 17:18 By Cybersecurity researchers have detected a new wave of phishing attacks that aim to deliver an ever-evolving information stealer referred to as StrelaStealer. The campaigns impact more than 100 organizations in the E.U. and the U.S., Palo Alto Networks Unit 42

React to this headline:

Fujitsu to shutter operations in Republic of Ireland 2024-03-22 at 16:35 By Paul Kunert In wake of Post Office Horizon scandal, global execs set new profit target, and Irish ops fell short Exclusive  Fujitsu is effectively shuttering business operations in the Republic of Ireland and opening consultations with employee representatives before the majority of the

React to this headline:

AWS Patches Critical ‘FlowFixation’ Bug in Airflow Service to Prevent Session Hijacking 2024-03-22 at 16:01 By Cybersecurity researchers have shared details of a now-patched security vulnerability in Amazon Web Services (AWS) Managed Workflows for Apache Airflow (MWAA) that could be potentially exploited by a malicious actor to hijack victims’ sessions and achieve remote code execution

React to this headline:

NVD slowdown leaves thousands of vulnerabilities without analysis data 2024-03-22 at 15:50 By Steven J. Vaughan-Nichols Security world reacts as NIST does a lot less of oft criticized, ‘almost always thankless’ work Opinion  The United States National Institute of Standards and Technology (NIST) has almost completely stopped adding analysis to Common Vulnerabilities and Exposures (CVEs)

React to this headline:

78% of organizations plan to increase ransomware protection 2024-03-22 at 15:50 By Ransomware protection is top of mind for both CXOs and practitioners but most organizations continue to struggle in the wake of attacks. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

EU antitrust team probing Microsoft ties between Entra ID and 365 services 2024-03-22 at 15:08 By Paul Kunert Google claims rival has made an ‘art and science’ out of licensing Exclusive  Google says the European Union’s antitrust authorities have asked if Microsoft unfairly ties authentication to Azure, in a further sign that officials are considering

React to this headline:

Vodafone, Three hustle to tie knot before regulators crash wedding 2024-03-22 at 14:32 By Paul Kunert Price hikes and reduced competition in virtual network space raised as major concerns Vodafone and Three UK have mere days to convince Britain’s competition authorities that a merger won’t harm consumers. Failure to do so will result in a

React to this headline:

China-Linked Group Breaches Networks via Connectwise, F5 Software Flaws 2024-03-22 at 14:32 By A China-linked threat cluster leveraged security flaws in Connectwise ScreenConnect and F5 BIG-IP software to deliver custom malware capable of delivering additional backdoors on compromised Linux hosts as part of an “aggressive” campaign. Google-owned Mandiant is tracking the activity under its uncategorized moniker UNC5174 (aka Uteus

React to this headline:

The CISA releases a secure software development attestation form 2024-03-22 at 14:17 By The CISA has released a set of guidelines to ensure that software developers are creating secure software systems for the government. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

CNCF boss talks ‘irrational exuberance’ in an AI-heavy Kubecon keynote 2024-03-22 at 13:33 By Richard Speed Kubecon? More like Queuecon as Paris-based show’s registration system fails The European leg of the Cloud Native Computing Foundation’s (CNCF) Kubecon shindig kicked off this week with an AI-infused keynote and a broken registration system that left many attendees

React to this headline:

Implementing Zero Trust Controls for Compliance 2024-03-22 at 13:33 By The ThreatLocker® Zero Trust Endpoint Protection Platform implements a strict deny-by-default, allow-by-exception security posture to give organizations the ability to set policy-based controls within their environment and mitigate countless cyber threats, including zero-days, unseen network footholds, and malware attacks as a direct result of user error. With

React to this headline:

Whistleblower says database for registering UK nurses is ‘completely unacceptable’ 2024-03-22 at 12:36 By Lindsay Clark Regulatory body insists it’s on ‘a journey of improvement’ Exclusive  The UK Information Commissioner’s Office has received a complaint detailing the mismanagement of personal data at the Nursing and Midwifery Council (NMC), the regulator that oversees worker registration.… This

React to this headline:

Redis tightens its license terms, pleasing basically no-one 2024-03-22 at 09:47 By Liam Proven FOSS developers gotta eat, but users need certainty Leading in-memory database vendor Redis is switching to a dual-license approach, imposing far more restrictive terms.… This article is an excerpt from The Register View Original Source React to this headline:

React to this headline:

U.S. Justice Department Sues Apple Over Monopoly and Messaging Security 2024-03-22 at 09:32 By The U.S. Department of Justice (DoJ), along with 16 other state and district attorneys general, on Thursday accused Apple of illegally maintaining a monopoly over smartphones, thereby undermining, among others, security and privacy of users when messaging non-iPhone users. “Apple wraps itself in

React to this headline: