News

Unlock the power of generative AI with AWS

Webinar  Generative AI (GenAI) has quickly transitioned from an emerging concept to a core driver of innovation across lots of different industries.…

Researcher spots 110 TB of sensitive info sitting in unprotected database

Nearly 32 million records belonging to users of tech from Trackman were left exposed to the internet, sitting in a non-password protected database, for an undetermined amount of time, according to researcher Jeremiah Fowler.…

Usual three-week window to address significant risks to federal agencies applies

The US Cybersecurity and Infrastructure Security Agency (CISA) says vulnerabilities in Fortinet and Ivanti products are now being exploited, earning them places in its Known Exploited Vulnerabilities (KEV) catalog.…

Firefixed: It's maintenance time for low-complexity, high-impact security flaw

It's patch time for Firefox fans as Mozilla issues a security advisory for a critical code execution vulnerability in the browser.…

Let the SANS AI Toolkit promote secure and responsible use of AI tools in the workplace

Sponsored Post  It's Cybersecurity Awareness Month again this October - a timely reminder for public and private sector organisations to work together and raise awareness about the importance of cybersecurity.…

Apply comprehensive security with access control, secure coding, infrastructure protection and AI governance

Partner Content  As generative AI (GenAI) becomes increasingly integrated into the corporate world, it is transforming everyday operations across various industries.…

Two arrested after allegedly trying to make off with their ill-gotten gains

The alleged administrators of the infamous Bohemia and Cannabia dark web marketplaces have been arrested after apparently shuttering the sites and trying to flee with their earnings.…

31 million users' usernames, email addresses and salted-encrypted passwords are out there

The Internet Archive had a bad day on the infosec front, after being DDoSed and exposing user data.…

USB sticks help, but it's unclear how tools that suck malware from them are delivered

A cyberespionage APT crew named GoldenJackal hacked air-gapped PCs belonging to government and diplomatic entities at least twice using two sets of custom malware, according to researchers from antivirus vendor ESET.…

Regulators know this is a nightmare and have done little to stop it. Privacy advocacy group wants that to change

Smart TVs are watching their viewers and harvesting their data to benefit brokers using the same ad technology that denies privacy on the internet.…

Intruders stayed for free on the network between 2014 and 2020

Marriott has agreed to pay a $52 million penalty and develop a comprehensive infosec program following a series of major data breaches between 2014 and 2020 that affected more than 344 million people worldwide.…

One-man-band faces a mountain of lawsuits but has few assets

The Florida business behind data brokerage National Public Data has filed for bankruptcy, admitting "hundreds of millions" of people were potentially affected in one of the largest information leaks of the year.…

Go forth and install your important security fixes

Microsoft says that the problems with the Windows 11 Patch Tuesday preview have now been resolved.…

As if hospitals and clinics didn't have enough to worry about

At least one US healthcare provider has been infected by Trinity, an emerging cybercrime gang with eponymous ransomware that uses double extortion and other "sophisticated" tactics that make it a "significant threat," according to the feds.…

Plus: SAP re-patches a failed patch for critical-rated flaw

Patch Tuesday  It's the second Tuesday of the month, which means Patch Tuesday, bringing with it fixes for numerous flaws, bugs and vulnerabilities in major software. And this one is a doozy.…

Given Amnesty's involvement, it's a safe bet spyware is in play

Qualcomm has issued 20 patches for its chipsets' firmware, including one Digital Signal Processor (DSP) software flaw that has been exploited in the wild.…

What does IT see but a dating app on your wee little screen

If you're using iPhone Mirroring at work: it's time to stop, lest you give your employer's IT department the capability to snoop through your dating apps, photos, messages — and anything else you might want to keep to yourself.…

Pro-Ukraine hackers claim credit for Russian state broadcasting shutdown

Ukrainian hackers shut down Russian state news agency VGTRK's online broadcasting and streaming services on Monday – president Vladimir Putin's 72nd birthday – as Kremlin officials vowed to bring those responsible for the "unprecedented" cyber attack to justice.…

Improved security features teased in May now appearing around the world

Google has apparently started a global rollout of three features in Android designed to make life a lot harder for thieves to profit from purloined phones.…

A couple million will do for a start … but Kim's crews are suspected of stealing much more

The US government is attempting to claw back more than $2.67 million stolen by North Korea's Lazarus Group, filing two lawsuits to force the forfeiture of millions in Tether and Bitcoin.…