Category: securityweek

AWS announced the seizure of domains used by Russian hacker group APT29 in phishing attacks targeting Ukraine and other countries. The post AWS Seizes Domains Used by Russia’s APT29 appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

Read more →

New rules from the White House on AI use by US national security and spy agencies aim to balance the technology’s promise with the need to protect against risks. The post New Rules for US National Security Agencies Balance AI’s…

Read more →

OnePoint Patient Care has disclosed a data breach impacting the personal information of nearly 800,000 individuals. The post OnePoint Patient Care Data Breach Impacts Nearly 800,000 People appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

Cupertino said the research lab and tooling offers “verifiable transparency” of its promises to secure AI-powered data on its platforms. The post Apple Opens Private Cloud Compute for Public Security Inspection  appeared first on SecurityWeek. This article has been indexed…

Read more →

Nvidia rolls out urgent security updates to fix at least 8 high-severity vulnerabilities in GPU drivers for Windows and Linux. The post Nvidia Patches High-Severity Flaws in Windows, Linux Graphics Drivers appeared first on SecurityWeek. This article has been indexed…

Read more →

The Lazarus APT created a deceptive website that exploited a Chrome zero-day to install malware and steal cryptocurrency. The post North Korean Hackers Exploited Chrome Zero-Day for Cryptocurrency Theft appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

Read more →

Deceptive Delight is a new AI jailbreak that has been successfully tested against eight models with an average success rate of 65%. The post ‘Deceptive Delight’ Jailbreak Tricks Gen-AI by Embedding Unsafe Topics in Benign Narratives appeared first on SecurityWeek.…

Read more →

A Fortinet zero-day tracked as CVE-2024-47575 and named FortiJump has been exploited since at least June 2024. The post New Fortinet Zero-Day Exploited for Months Before Patch appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

The Penn State university has agreed to pay $1.25 million to settle alleged failure to meet cybersecurity requirements for DoD and NASA contracts. The post Penn State Settles for $1.25M Over Failure to Comply With DoD, NASA Cybersecurity Requirements appeared…

Read more →

AI models from Hugging Face can contain similar hidden problems to OSS downloads from repositories such as GitHub. The post New Scoring System Helps Secure the Open Source AI Model Supply Chain appeared first on SecurityWeek. This article has been…

Read more →

Cisco has released patches for multiple vulnerabilities in ASA, FMC, and FTD products, including an exploited flaw. The post Cisco Patches Vulnerability Exploited in Large-Scale Brute-Force Campaign appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

Over $350,000 was paid out on day 2 of Pwn2Own Ireland 2024, including $50,000 for an exploit targeting the Samsung Galaxy S24.  The post Samsung Galaxy S24 Hacked at Pwn2Own Ireland 2024  appeared first on SecurityWeek. This article has been…

Read more →

Fortinet confirms zero-day exploits hitting remote code execution bug in the FortiManager platform. CVSS severity score 9.8/10. The post Fortinet Confirms Zero-Day Exploit Targeting FortiManager Systems appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Read more →

Google has released new technology to embed watermarks and flag AI-generated content across text, images, audio, and video. The post Google SynthID Adding Invisible Watermarks to AI-Generated Content appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Read more →

New York startup raises $33 million in an expanded Series A round to build technology to detect deepfake and AI-generated media. The post Reality Defender Banks $33M to Tackle AI-Generated Deepfakes appeared first on SecurityWeek. This article has been indexed…

Read more →

Pwn2Own Ireland 2024 participants have earned half a million dollars on the first day for hacking NAS devices, cameras, speakers and printers. The post White Hat Hackers Earn $500,000 on First Day of Pwn2Own Ireland 2024 appeared first on SecurityWeek.…

Read more →

The SEC announces penalties against Unisys, Avaya, Check Point and Mimecast for downplaying the impact of the SolarWinds Orion hack. The post SEC Charges Four Companies Over Misleading Disclosures on SolarWinds Hack appeared first on SecurityWeek. This article has been…

Read more →

Terrance Michael Ciszek is charged with buying stolen account credentials from the Genesis Market dark web marketplace. The post US Police Detective Charged With Purchasing Stolen Credentials appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

Stream.Security (formerly Lightlytics) has raised a total of $55 million since launching in 2020 with a cloud data security product. The post Stream.Security Secures $30 Million Series B  appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Read more →

Critical and high-severity vulnerabilities that can lead to full device compromise have been found in mbNET.mini and Helmholz industrial routers.  The post Critical Vulnerabilities Expose mbNET.mini, Helmholz Industrial Routers to Attacks appeared first on SecurityWeek. This article has been indexed…

Read more →