News
-
"PowerShell Gallery Prone to Typosquatting, Other Supply Chain Attacks"According to Aqua Nautilus researchers, Microsoft's PowerShell Gallery poses a software supply chain risk due to its relatively weak protection against attackers uploading malicious packages to the online repository. Recent testing of the repository's…
-
"AnonFiles Shuts Down After Massive User Abuse"A popular anonymous file sharing service used by security researchers and threat actors has recently closed down, citing "extreme volumes" of users abusing it. AnonFiles was a going concern for two years, enabling anyone to share files without fear…
-
"'Distilling' Outdated Software Could Save Defense Dept. Millions in Time and Money"Many highly sophisticated systems, such as those that power drones, fighter jets, and even secure authentication programs, are custom software developed at great expense. It is not as simple as downloading the latest software patch and clicking "Install…
-
"Think Twice Before Accepting Notifications on Chrome: Threats on the Rise"Many websites request permission to display notifications upon arrival. Many users unknowingly expose themselves to risk because they are accustomed to agreeing to generic prompts. Oren Koren, co-founder of the cybersecurity company Veriti, warns that…
-
"Jefferson Cherry Hill Warns of Possible Data Breach. What Info May Have Been Exposed?"A missing piece of electronic equipment at Jefferson Health's hospital in Cherry Hill may have compromised the personal information of some of its patients, the health care provider recently revealed. Jefferson Health said it began mailing letters…
-
"CISA Publishes JCDC Remote Monitoring and Management Systems Cyber Defense Plan"As part of its 2023 Planning Agenda, the US Cybersecurity and Infrastructure Security Agency (CISA) has released the Cyber Defense Plan for Remote Monitoring and Management (RMM), the first proactive plan developed by industry and government partners…
-
"Web App Warning: 74% Of Apps With PII Are Vulnerable to a 'Major Exploit'"An analysis of 3.5 million business assets revealed that most Internet-exposed web apps containing Personal Identifiable Information (PII) are vulnerable to cyberattacks. Hackers use PII for financial, credential, and phishing-related attacks. Seventy-…
-
"A Third of UK University Students Targeted By Fraud"Security researchers at NatWest discovered that one in three students at British universities encountered fraud attempts online last year. The researchers polled over 3000 UK university students from 63 towns and cities back in May. The most…
-
"DEF CON Generative AI Hacking Challenge Explored Cutting Edge of Security Vulnerabilities"OpenAI, Google, Meta, and other companies tested their Large Language Models (LLMs) at the DEF CON hacker conference. Results from the event have provided the White House Office of Science and Technology Policy and the Congressional AI Caucus with a new…
-
"Ransomware Hit Disrupts Real Estate Property Listings in US"A ransomware attack has disrupted property listings across the US. Real estate agents lost the ability to list or update property information due to an attack on the California-based data services company Rapattoni, which hosts Multiple Listing Services…
-
"Chrome 116 Patches 26 Vulnerabilities"Google recently announced the release of Chrome 116 to the stable channel with patches for 26 vulnerabilities, including 21 reported by external researchers. Of the externally reported bugs, eight have a severity rating of "high," with most of them…
-
"Monti Ransomware Targets Legal and Gov't Entities With New Linux-Based Variant"According to new research, the Monti hacker group appears to have reemerged after a two-month hiatus, claiming to target legal and government entities with a new Linux-based ransomware variant. Monti was discovered in June 2022, following the infamous…