CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2022-48618 Apple Multiple Products Improper Authentication Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks…
Category: EN
Hackers steal $112 million of XRP Ripple cryptocurrency
On Tuesday, hackers stole around $112 million of the Ripple-focused cryptocurrency XRP from a crypto wallet, Ripple’s co-founder and executive chairman has disclosed. Ripple’s Chris Larsen said on Wednesday that the stolen crypto was his. Larsen wrote on X (previously…
Security giant Proofpoint is laying off 280 employees, about 6% of its workforce
Proofpoint is laying off about 6% of its global workforce, or 280 employees, the company confirmed to TechCrunch. “This decision was not taken lightly, and it is deeply rooted in our forward-looking company strategy of aligning our investments and hiring…
Privacy Watchdog Fines Italy’s Trento City for Privacy Breaches in Use of AI
Italy’s privacy watchdog has recently fined the northern city of Trento since they failed to keep up with the data protection guidelines in how they used artificial intelligence (AI) for street surveillance projects. Trento was the first local administration in…
Cyberattack on Bucks County’s Emergency System
Bucks County is in a compromising position as a digital ambush has transpired. About a week ago, the computer-aided emergency dispatch system, the backbone of quick and efficient emergency responses, fell victim to a cyberattack. Picture it like the…
Warning: Threat actors getting around some Ivanti mitigations
Cyber authorities in the U.S. and Australia have issued new warnings to IT administrators to take more action to protect Ivanti Connect Secure and Policy Secure Gateways. At the same time, Ivanti revealed that two new vulnerabilities for the devices…
Vade uses generative AI to enhance spear-phishing detection
Vade announced that it has pioneered a new method that improves the confidence of its spear-phishing detection engine. The enhancement, designed to combat advanced threats including those produced by generative AI, leverages threat samples created by artificial technology and human…
A zero-day vulnerability (and PoC) to blind defenses relying on Windows event logs
A zero-day vulnerability that, when triggered, could crash the Windows Event Log service on all supported (and some legacy) versions of Windows could spell trouble for enterprise defenders. Discovered by a security researcher named Florian and reported to Microsoft, the…
Experian Fraud Protect enables automotive dealers to detect and prevent fraud
With more of the vehicle buying journey shifting online and vehicle prices remaining at elevated levels, fraudsters are targeting the automotive industry at an increasing rate. To address the rising threat, Experian launched Fraud Protect, a web-based application that helps…
EU Launches First Cybersecurity Certification for Digital Products
The voluntary scheme aims to encourage ICT providers to boost the cybersecurity of products and services across the EU This article has been indexed from www.infosecurity-magazine.com Read the original article: EU Launches First Cybersecurity Certification for Digital Products
Pawn Storm’s Stealthy Net-NTLMv2 Assault Revealed
Trend Micro reported recent attacks focused on government sectors, including foreign affairs, energy, defense and transportation This article has been indexed from www.infosecurity-magazine.com Read the original article: Pawn Storm’s Stealthy Net-NTLMv2 Assault Revealed
Orange Espana data breach leads to more ransomware attacks
Orange España, the second-largest mobile operator in Spain, fell victim to a cyber-attack earlier this month, resulting in a disruption of mobile services lasting over three hours. Subsequent investigations by a group of security researchers unveiled that the assailants, identified…
CISA and FBI Release Secure by Design Alert Urging Manufacturers to Eliminate Defects in SOHO Routers
Today, CISA and the Federal Bureau of Investigation (FBI) published guidance on Security Design Improvements for SOHO Device Manufacturers as a part of the new Secure by Design (SbD) Alert series that focuses on how manufacturers should shift the burden…
Sustainability: From Strategy to Reality
Technology leaders discuss the evolving role of the CIO and the importance of finding innovative and sustainable solutions in today’s technology-driven world. This article has been indexed from Cisco Blogs Read the original article: Sustainability: From Strategy to Reality
Achieving Operational Simplicity with a Network Platform Approach
Cisco’s goal is to enable simplified operations with a platform aligned to domains that over time will converge into a unified solution delivered via our Cisco Networking Cloud vision. This article has been indexed from Cisco Blogs Read the original…
Ivanti releases patches for VPN zero-days, discloses two more high-severity vulns
Many versions still without fixes while sophisticated attackers bypass mitigations Ivanti has finally released the first round of patches for vulnerability-stricken Connect Secure and Policy Secure gateways, but in doing so has also found two additional zero-days, one of which…
Reken Emerges From Stealth With $10 Million Seed Funding
Reken, an AI-defense cybersecurity startup, emerged from stealth – but without a publicly demonstrable product. The post Reken Emerges From Stealth With $10 Million Seed Funding appeared first on SecurityWeek. This article has been indexed from SecurityWeek RSS Feed Read…
Kentik AI improves network monitoring and observability
Kentik launched Kentik AI to give any engineer, operator, architect, or developer the ability to troubleshoot complex networks. The company is simultaneously launching a modern and AI-assisted Network Monitoring System (Kentik NMS) to enable teams to observe, manage, and optimize…
US Senators Propose Cybersecurity Agriculture Bill
The Farm and Food Cybersecurity Act has cross-party support and aims enhance the US agriculture sector’s cyber defenses This article has been indexed from www.infosecurity-magazine.com Read the original article: US Senators Propose Cybersecurity Agriculture Bill
U.S. Treasury Imposes Sanctions on Alleged ISIS Cybersecurity Experts
By Waqas The US Treasury Department announced sanctions against two Egyptian nationals, Mu’min Al-Mawji Mahmud Salim and Sarah Jamal Muhammad Al-Sayyid, for running the Electronic Horizons Foundation (EHF), a platform allegedly providing cyber tools and training to ISIS supporters. This…