0.0.0.0 Day: 18-Year-Old Browser Vulnerability Impacts MacOS and Linux Devices
Cybersecurity researchers have discovered a new "0.0.0.0 Day" impacting all major web browsers that malicious websites could take advantage of...
News
Automated Security Validation: One (Very Important) Part of a Complete CTEM Framework
The last few years have seen more than a few new categories of security solutions arise in hopes of stemming...
Unlock the Future of Cybersecurity: Exclusive, Next Era AI Insights and Cutting-Edge Training at SANS Network Security 2024
The Immersive Experience Happening This September in Las Vegas!In an era of relentless cybersecurity threats and rapid technological advancement, staying...
New Phishing Scam Uses Google Drawings and WhatsApp Shortened Links
Cybersecurity researchers have discovered a novel phishing campaign that leverages Google Drawings and shortened links generated via WhatsApp to evade...
Windows Downgrade Attack Risks Exposing Patched Systems to Old Vulnerabilities
Microsoft said it is developing security updates to address two loopholes that it said could be abused to stage downgrade...
Critical Security Flaw in WhatsUp Gold Under Active Attack – Patch Now
A critical security flaw impacting Progress Software WhatsUp Gold is seeing active exploitation attempts, making it essential that users move...
FBI and CISA Warn of BlackSuit Ransomware That Demands Up to $500 Million
The ransomware strain known as BlackSuit has demanded as much as $500 million in ransoms to date, with one individual...
ICO Prepares £6m Fine for NHS Supplier Advanced
The UK’s data protection watchdog has announced a provisional £6m fine for a healthcare IT service provider, after ruling that...
#BHUSA: The Board Needs to Understand AI Deployment Risks
The idiosyncratic use of AI within organizations is a problem when it comes to risk. Instead, AI deployment must be...
#BHUSA: DARPA’s AI Cyber Challenge Heats Up as Healthcare Sector Watches
With software vulnerabilities being exploited at an alarming rate, the Defense Advanced Research Projects Agency's (DARPA) AI Cyber Challenge (AIxCC)...
UK Managers Improve Cyber Knowledge but Staff Lack Training
Managers in UK organizations are getting better at understanding online safety best practice, but their skills are not necessarily matched...
CISA Releases Guide to Enhance Software Security Evaluations
The US Cybersecurity and Infrastructure Security Agency (CISA) has released a new guide to enhance how organizations evaluate software manufacturers'...
#BHUSA: New Ransomware Groups Emerge Despite Crackdowns
New ransomware groups are emerging as financial gain continues to outweigh the risks for cybercriminals, a new report by Rapid7...
#BHUSA: CrowdStrike Outage Serves as Dress Rehearsal for China-Led Cyber-Attacks
The recent CrowdStrike IT outage served as a dress rehearsal for a potential cyber-attack on critical infrastructure that could potentially...
Ireland’s DPC Takes Twitter to Court Over AI User Data Concerns
The Data Protection Commission (DPC), Ireland’s data protection regulator, has launched High Court proceedings against Twitter International Unlimited Company, X...
Microsoft 365 Phishing Alert Can Be Hidden with CSS
Recent research by cybersecurity experts has uncovered a vulnerability in Microsoft 365's anti-phishing mechanisms, which can be exploited using CSS....
New Linux Kernel Exploit Technique ‘SLUBStick’ Discovered by Researchers
Cybersecurity researchers have shed light on a novel Linux kernel exploitation technique dubbed SLUBStick that could be exploited to elevate...
Roundcube Webmail Flaws Allow Hackers to Steal Emails and Passwords
Cybersecurity researchers have disclosed details of security flaws in the Roundcube webmail software that could be exploited to execute malicious...
New Go-based Backdoor GoGra Targets South Asian Media Organization
An unnamed media organization in South Asia was targeted in November 20233 using a previously undocumented Go-based backdoor called GoGra....
CrowdStrike Reveals Root Cause of Global System Outages
Cybersecurity company CrowdStrike has published its root cause analysis detailing the Falcon Sensor software update crash that crippled millions of...
Chameleon Android Banking Trojan Targets Users Through Fake CRM App
Cybersecurity researchers have lifted the lid on a new technique adopted by threat actors behind the Chameleon Android banking trojan...
Apple’s New macOS Sequoia Tightens Gatekeeper Controls to Block Unauthorized Software
Apple on Tuesday announced an update to its next-generation macOS version that makes it a little more difficult for users...
Police Recover Over $40m Headed to BEC Scammers
A Singaporean commodity firm has had a narrow escape after police managed to intervene to recover nearly all of the $42.3m...
French Museums Hit By Ransomware Attack
IT systems used by about 40 French museums, including the Grand Palais, have been targeted by a ransomware attack.The French...
