Category: Uncategorized
-
White House Outlines Plan for Addressing BGP Vulnerabilities Eduard Kovacs
The White House has released a roadmap for addressing internet routing (BGP) security issues, mainly through RPKI adoption. The post White House Outlines Plan for Addressing BGP Vulnerabilities appeared first on SecurityWeek. Read More
-
D-Link Warns of Code Execution Flaws in Discontinued Router Model Ionut Arghire
D-Link warns of multiple remote code execution vulnerabilities impacting its discontinued DIR-846 router model. The post D-Link Warns of Code Execution Flaws in Discontinued Router Model appeared first on SecurityWeek. Read More
-
Android’s September 2024 Update Patches Exploited Vulnerability Ionut Arghire
Google has released Android security updates to patch an exploited local privilege escalation vulnerability. The post Android’s September 2024 Update Patches Exploited Vulnerability appeared first on SecurityWeek. Read More
-

Clearview AI Faces €30.5M Fine for Building Illegal Facial Recognition Database [email protected] (The Hacker News)
The Dutch Data Protection Authority (Dutch DPA) has imposed a fine of €30.5 million ($33.7 million) against facial recognition firm Clearview AI for violating the General Data Protection Regulation (GDPR) in the European Union (E.U.) by building an “illegal database with billions of photos of faces,” including those of Dutch citizens. “Facial recognition is a…
-

Hackers Use Fake GlobalProtect VPN Software in New WikiLoader Malware Attack [email protected] (The Hacker News)
A new malware campaign is spoofing Palo Alto Networks’ GlobalProtect VPN software to deliver a variant of the WikiLoader (aka WailingCrab) loader by means of a search engine optimization (SEO) campaign. The malvertising activity, observed in June 2024, is a departure from previously observed tactics wherein the malware has been propagated via traditional phishing emails,…
-
Halliburton Confirms Data Stolen in Cyberattack Ryan Naraine
The US oil giant updated an SEC filing to confirm malicious hackers “accessed and exfiltrated information” from its corporate systems. The post Halliburton Confirms Data Stolen in Cyberattack appeared first on SecurityWeek. Read More
-
VMware Patches High-Severity Code Execution Flaw in Fusion Ionut Arghire
VMware rolls out patch for a high-severity code execution vulnerability in the Fusion hypervisor. The post VMware Patches High-Severity Code Execution Flaw in Fusion appeared first on SecurityWeek. Read More
-
CISO Conversations: Jaya Baloo From Rapid7 and Jonathan Trull From Qualys Kevin Townsend
CSOs Jaya Baloo and Jonathan Trull discuss the route, role, and requirements in becoming and being a successful CISO. The post CISO Conversations: Jaya Baloo From Rapid7 and Jonathan Trull From Qualys appeared first on SecurityWeek. Read More
-

Hacktivists Exploits WinRAR Vulnerability in Attacks Against Russia and Belarus [email protected] (The Hacker News)
A hacktivist group known as Head Mare has been linked to cyber attacks that exclusively target organizations located in Russia and Belarus. “Head Mare uses more up-to-date methods for obtaining initial access,” Kaspersky said in a Monday analysis of the group’s tactics and tools. “For instance, the attackers took advantage of the relatively recent CVE-2023-38831…
-

New Rust-Based Ransomware Cicada3301 Targets Windows and Linux Systems [email protected] (The Hacker News)
Cybersecurity researchers have unpacked the inner workings of a new ransomware variant called Cicada3301 that shares similarities with the now-defunct BlackCat (aka ALPHV) operation. “It appears that Cicada3301 ransomware primarily targets small to medium-sized businesses (SMBs), likely through opportunistic attacks that exploit vulnerabilities as the initial access vector,” cybersecurityRead More
