Category: Uncategorized
-
Fortinet Patches Code Execution Vulnerability in FortiOS Ionut Arghire
Fortinet has patched multiple vulnerabilities in FortiOS, including a high-severity code execution security flaw. The post Fortinet Patches Code Execution Vulnerability in FortiOS appeared first on SecurityWeek. Read More
-
Data Security Firm Cyberhaven Raises $88 Million at $488 Million Valuation Eduard Kovacs
Data security company Cyberhaven has raised $88 million in a Series C funding round that brings the total to $136 million. The post Data Security Firm Cyberhaven Raises $88 Million at $488 Million Valuation appeared first on SecurityWeek. Read More
-

Lessons from the Ticketmaster-Snowflake Breach [email protected] (The Hacker News)
Last week, the notorious hacker gang, ShinyHunters, sent shockwaves across the globe by allegedly plundering 1.3 terabytes of data from 560 million Ticketmaster users. This colossal breach, with a price tag of $500,000, could expose the personal information of a massive swath of the live event company’s clientele, igniting a firestorm of concern and outrage. …
-

Black Basta Ransomware May Have Exploited MS Windows Zero-Day Flaw [email protected] (The Hacker News)
Threat actors linked to the Black Basta ransomware may have exploited a recently disclosed privilege escalation flaw in the Microsoft Windows Error Reporting Service as zero-day, according to new findings from Symantec. The security flaw in question is CVE-2024-26169 (CVSS score: 7.8), an elevation of privilege bug in the Windows Error Reporting Service that could…
-
When Vendors Overstep – Identifying the AI You Don’t Need Alastair Paterson
AI models are nothing without vast data sets to train them and vendors will be increasingly tempted to harvest as much data as they can and answer any questions later. The post When Vendors Overstep – Identifying the AI You Don’t Need appeared first on SecurityWeek. Read More
-
GitHub Paid Out Over $4 Million via Bug Bounty Program Eduard Kovacs
The code hosting platform GitHub has paid out more than $4 million since the launch of its bug bounty program 10 years ago. The post GitHub Paid Out Over $4 Million via Bug Bounty Program appeared first on SecurityWeek. Read More
-
Chrome 126, Firefox 127 Patch High-Severity Vulnerabilities Ionut Arghire
Google and Mozilla have released patches for 21 and 15 vulnerabilities in Chrome and Firefox, respectively. The post Chrome 126, Firefox 127 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. Read More
-
Ransomware Group Exploits PHP Vulnerability Days After Disclosure Ionut Arghire
The TellYouThePass ransomware gang started exploiting a recent code execution flaw in PHP days after public disclosure. The post Ransomware Group Exploits PHP Vulnerability Days After Disclosure appeared first on SecurityWeek. Read More
-

New Phishing Campaign Deploys WARMCOOKIE Backdoor Targeting Job Seekers [email protected] (The Hacker News)
Cybersecurity researchers have disclosed details of an ongoing phishing campaign that leverages recruiting- and job-themed lures to deliver a Windows-based backdoor named WARMCOOKIE. “WARMCOOKIE appears to be an initial backdoor tool used to scout out victim networks and deploy additional payloads,” Elastic Security Labs researcher Daniel Stepanic said in a new analysis. “Each sample is…
-
ICS Patch Tuesday: Advisories Published by Siemens, Schneider Electric, Aveva, CISA Eduard Kovacs
Several ICS vendors released advisories on Tuesday to inform customers about vulnerabilities found in their industrial and OT products. The post ICS Patch Tuesday: Advisories Published by Siemens, Schneider Electric, Aveva, CISA appeared first on SecurityWeek. Read More
