New research has found that the CONTINUATION frame in the HTTP/2 protocol can be exploited to conduct denial-of-service (DoS) attacks. The technique has been codenamed HTTP/2 CONTINUATION Flood by security researcher Bartek Nowotarski, who reported the issue to the CERT Coordination Center…
Category: EN
Considerations for Operational Technology Cybersecurity
Operational Technology (OT) refers to the hardware and software used to change, monitor, or control the enterprise’s physical devices, processes, and events. Unlike traditional Information Technology (IT) systems, OT systems directly impact the physical world. This unique characteristic of OT brings…
Leicester Council Confirms Confidential Documents Leaked in Ransomware Attack
Leicester City Council confirmed around 25 sensitive documents have been leaked online, including personal ID information, following claims by the Inc Ransom gang This article has been indexed from www.infosecurity-magazine.com Read the original article: Leicester Council Confirms Confidential Documents Leaked…
Surveillance by the New Microsoft Outlook App
The ProtonMail people are accusing Microsoft’s new Outlook for Windows app of conducting extensive surveillance on its users. It shares data with advertisers, a lot of data: The window informs users that Microsoft and those 801 third parties use their…
New HTTP/2 DoS Attack Potentially More Severe Than Record-Breaking Rapid Reset
New HTTP/2 DoS method named Continuation Flood can pose a greater risk than Rapid Reset, which has been used for record-breaking attacks. The post New HTTP/2 DoS Attack Potentially More Severe Than Record-Breaking Rapid Reset appeared first on SecurityWeek. This…
Deepfake Expert Henry Ajder to Keynote Infosecurity Europe 2024 on AI Challenges
Infosecurity Europe 2024 will feature a keynote presentation by deepfake expert Henry Ajder, exploring the implications of generative AI on cybersecurity This article has been indexed from www.infosecurity-magazine.com Read the original article: Deepfake Expert Henry Ajder to Keynote Infosecurity Europe…
Ransomware gang did steal residents’ confidential data, UK city council admits
INC Ransom emerges as a growing threat as some ex-LockBit/ALPHV affiliates get new gigs Leicester City Council is finally admitting its “cyber incident” was carried out by a ransomware gang and that data was stolen, hours after the criminals forced…
Researchers Observed Visual Studio Code Extensions Stealing Users’ Sensitive Data
ReversingLabs has uncovered a series of Visual Studio Code (VS Code) extensions designed to transfer sensitive information from unsuspecting users. This discovery highlights the growing trend of supply chain attacks increasingly targeting open-source repositories and platforms. The threat landscape has…
Hosting Provider VMware ESXi Servers Hit by New SEXi Ransomware
A new ransomware variant is targeting VMware ESXi servers, a popular virtualization platform used by hosting providers worldwide. Dubbed “SEXi” by its creators, this ransomware has already made significant waves, with Powerhost’s CEO revealing a staggering ransom demand of approximately…
Zoom Paid Out $10 Million via Bug Bounty Program Since 2019
Video conferencing giant Zoom has paid out $10 million through its bug bounty program since it was launched in 2019. The post Zoom Paid Out $10 Million via Bug Bounty Program Since 2019 appeared first on SecurityWeek. This article has…
Microsoft’s Security Chickens Have Come Home to Roost
News analysis: SecurityWeek editor-at-large Ryan Naraine reads the CSRB report on China’s audacious Microsoft’s Exchange Online hack and isn’t at all surprised by the findings. The post Microsoft’s Security Chickens Have Come Home to Roost appeared first on SecurityWeek. This…
Cyber Insurance Reduces Risk: Five Ways to Lower Your Rates
Mike Bucciero, Client Experience Director Yep, it’s that time of year again. The moment when that dreaded questionnaire from your Cyber Insurer lands on your desk like a ton of digital bricks. Suddenly, panic mode kicks in, and you’re transported…
CMA Begins Phase 2 Probe Of Vodafone Merger With Three UK
Deadline expired for Vodafone to allay CMA concerns over merger with Three UK. In-depth Phase 2 investigation begins This article has been indexed from Silicon UK Read the original article: CMA Begins Phase 2 Probe Of Vodafone Merger With Three…
9 Must-Do Tips to Secure Ubuntu Server
In today’s world, if you’re not constantly working to secure your servers, you’re already 10 steps behind every hacker on the planet. And if you happen to be a Linux systems administrator, you might think it doesn’t apply to you.…
Avast One Silver allows users to tailor their coverage based upon their personal preferences
Avast released a new product tier to the Avast One suite: Avast One Silver. The new offering takes a modular approach to cyber security, allowing people to tailor their coverage based upon their needs, personal preferences, or risk profiles. The…
Intel Shares Slide After Foundry Business Posts $7 Billion Loss
Intel’s share price falls 8.2 percent after its contract chip-making business posted an operating loss of $7 billion This article has been indexed from Silicon UK Read the original article: Intel Shares Slide After Foundry Business Posts $7 Billion Loss
Security vs. Compliance: What’s the Difference?
Security and compliance – a phrase often uttered in the same breath as if they are two sides of the same coin, two members of the same team, or two great tastes that go great together. As much as I…
#MIWIC2024: Stephanie Luangraj, CEO and Founder of WomenWhoSecure
Organised by Eskenzi PR in media partnership with the IT Security Guru, the Most Inspiring Women in Cyber Awards aim to shed light on the remarkable women in our industry. The following is a feature on one of 2024’s Top 20 women selected…
Expert Insight: Breaking the glass firewall: Building a cybersecurity sisterhood
It’s no secret that the gender gap in cybersecurity is a worldwide issue, with women currently representing only 24% of the global cybersecurity workforce. This gender disparity can be coined as a ‘glass firewall’ – cybersecurity’s version of the glass…
Threat Actor Claims Classified Five Eyes Data Theft
Threat actor IntelBroker claims to have classified intelligence stolen from US government tech supplier Acuity This article has been indexed from www.infosecurity-magazine.com Read the original article: Threat Actor Claims Classified Five Eyes Data Theft