A new zero-day pre-authentication remote code execution vulnerability has been disclosed in the Apache OFBiz open-source enterprise resource planning (ERP) system that could allow threat actors to achieve remote code execution on affected instances. Tracked as CVE-2024-38856, the flaw has…
LianSpy Spyware ‘LianSpy’ Targets Android Users
Security researchers at Kaspersky have uncovered a new Android spyware campaign called LianSpy, which has been used for cyberespionage against targeted Android device users in Russia. The malware, dubbed “LianSpy,” has been in operation since July 2021, quietly harvesting sensitive…
Mobile Guardian attacked, leading to remote wiping of 13,000 devices
Singapore Ministry of Education orders software removed after string of snafus UK-based mobile device management vendor Mobile Guardian has admitted that on August 4 it suffered a security incident that involved unauthorized access to iOS and ChromeOS devices managed by…
ITSM concerns when integrating new AI services
Let’s talk about a couple of recent horror stories. Late last year, a Chevrolet dealership deployed a chatbot powered by a large language model (LLM) on their homepage. This LLM, trained with detailed specifications of Chevrolet vehicles, was intended to…
Scaling data security solutions: What you need to know
In this Help Net Security interview, Bruno Kurtic, President and CEO at Bedrock Security, discusses the role of data visibility in enhancing cybersecurity. He explains that effective data visibility involves discovering, classifying, and contextualizing data, which helps organizations understand and…
Email attacks skyrocket 293%
Email attacks have surged by 293% in the first half of 2024 compared to the same period in 2023, according to Acronis. The number of ransomware detections was also on the rise, increasing 32% from Q4 2023 to Q1 2024.…
Illinois relaxes biometric privacy law so snafus won’t cost businesses billions
Some scowl, some smile, as fines no longer apply every time your mugshot or fingerprint is shared The US state of Illinois has reduced penalties for breaches of its tough Biometric Information Privacy Act (BIPA).… This article has been indexed…
Whitepaper: Tools to tackle the multicloud environment
Implementing multicloud solutions is becoming increasingly paramount for organizations seeking to drive their business forward in the coming years. As a result, the role of cloud security is evolving. Cloud providers often use different security models with varying responsibilities and…
AI-fueled phishing scams raise alarm ahead of U.S. presidential election
Highlighting growth of phishing and digital scams targeting United States citizens, Bolster released a research that identified 24 separate nation-state threat actor groups attempting to exploit rising political tensions across the US to interfere with the 2024 presidential election. “We…
ISC Stormcast For Tuesday, August 6th, 2024 https://isc.sans.edu/podcastdetail/9084, (Tue, Aug 6th)
This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: ISC Stormcast For Tuesday, August 6th, 2024…
Protecting Your Digital Footprint: A Guide to Data Protection and Privacy Consulting
Increasingly in our digital world, personal and organizational data requires thoughtful safeguarding from growing cyber… Protecting Your Digital Footprint: A Guide to Data Protection and Privacy Consulting on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing…
NFL to begin using face scanning tech across all of its stadiums
Smile for the camera to get in, or buy a beer without lining up The National Football League and all 32 of its teams will use tech from facial recognition software vendor Wicket to verify the identity of thousands of…
Shoe Zone – 46,140 breached accounts
In June 2024, the UK footwear chain Shoe Zone disclosed a data breach that was subsequently posted for sale on a popular hacking forum. The data included over 100k orders containing names, addresses, partial credit card numbers (card type and…
Fake Google Authenticator Sites Exploit Google Ads To Deliver Malware
Researchers have spotted a new malware campaign where the hackers exploit Google Ads to sponsor… Fake Google Authenticator Sites Exploit Google Ads To Deliver Malware on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses. This…
Google Chrome uBlock Origin Users Need To Switch Ad Blocker
Google Chrome users may need to switch to other ad blockers as uBlock Origin may… Google Chrome uBlock Origin Users Need To Switch Ad Blocker on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses. This…
Elon Musk sues OpenAI again, alleging ‘Shakespearean’ betrayal of AI mission
Elon Musk sues OpenAI and Sam Altman in federal court, alleging betrayal of AI’s founding mission, raising crucial questions about ethics, profit, and the future of artificial intelligence development. This article has been indexed from Security News | VentureBeat Read…
Physicists develop new method to combine conventional internet with the quantum internet
Researchers send entangled photons and laser pulses of the same color over a single optical fiber for the first time. This article has been indexed from Hacking News — ScienceDaily Read the original article: Physicists develop new method to combine…
To Fight Surveillance Pricing, We Need Privacy First
< div class=”field field–name-body field–type-text-with-summary field–label-hidden”> < div class=”field__items”> < div class=”field__item even”> Digital surveillance is ubiquitous. Corporate snoops collect information about everything we do, everywhere we go, and everyone we communicate with. Then they compile it, store it, and use…
MSN: Russia takes aim at Sitting Ducks domains, bags 30,000+
Eight-year-old domain hijacking technique still claiming victims The post MSN: Russia takes aim at Sitting Ducks domains, bags 30,000+ appeared first on Eclypsium | Supply Chain Security for the Modern Enterprise. The post MSN: Russia takes aim at Sitting Ducks…
US Judge Finds Google ‘Is Monopolist’ In Landmark Ruling
US federal judge rules Google illegally maintained monopoly in search and advertising, opening way to remedy phase of trial This article has been indexed from Silicon UK Read the original article: US Judge Finds Google ‘Is Monopolist’ In Landmark Ruling
Cisco IOS XE Automation from Cisco Live AMEA 2024
Check out all the IOS XE sessions from the recent Cisco Live in Las Vegas. Sessions cover topics including getting started with Cisco IOS XE programmability and automation, tooling with YANG Suite and Terraform, and open-source solutions for Model Driven…
How Using a VPN May Benefit Your Privacy
In the title of this post, keep in mind the keyword is may; as a forewarning, this is not a post that definitively says you must use a VPN regardless of the circumstances… because that is simply not true. From…
USENIX Security ’23 – Gradient Obfuscation Gives a False Sense of Security in Federated Learning
Authors/Presenters:Kai Yue, Richeng Jin, Chau-Wai Wong, Dror Baron, Huaiyu Dai Many thanks to USENIX for publishing their outstanding USENIX Security ’23 Presenter’s content, and the organizations strong commitment to Open Access. Originating from the conference’s events situated at the Anaheim…
AWS Deploying ‘Mithra’ Neural Network to Predict and Block Malicious Domains
AWS says a massive neural network graph model with 3.5 billion nodes and 48 billion edges is speeding up the prediction and detection of malicious domains. The post AWS Deploying ‘Mithra’ Neural Network to Predict and Block Malicious Domains appeared…