News
-
"New Flaws in TPM 2.0 Library Pose Threat to Billions of IoT and Enterprise Devices"The Trusted Platform Module (TPM) 2.0 reference library specification contains two critical security flaws that could lead to information disclosure or privilege escalation. One of the vulnerabilities, tracked as CVE-2023-1017, involves an out-of-bounds…
-
"No Programming Skills? Chatbots Will Help Inexperienced Hackers"There is already evidence of experienced threat actors using the Artificial Intelligence (AI) chatbot ChatGPT and other chatbots to help them write malware. With a chatbot and existing code, anyone, including those without programming experience, can…
-
"Prepare for AI Hackers"Bruce Schneier, a computer security expert and adjunct lecturer in public policy at the Harvard Kennedy School, envisions a not-too-distant future in which Artificial Intelligence (AI) can catch and exploit security flaws with superhuman speed, scope,…
-
"Bill to Give Biden Authority to Ban TikTok Advances in House"The House Foreign Affairs Committee voted yesterday to approve a bill that would give President Joe Biden the authority to ban TikTok in the United States despite objections from some lawmakers and advocates who say the measure could disrupt online…
-
"Canadian Bookstore Chain Indigo Says Employee Data Stolen in Ransomware Attack"Canadian bookstore chain Indigo recently confirmed that the personal information of both current and former employees was stolen in a ransomware attack last month. The hack took place on February 8 and resulted in the company taking down affected…
-
"50 Million Password Heist Shows Info-Stealing Is on the Rise"According to Group-IB, during the first seven months of 2022, different cybercriminal gangs infected more than 890,000 user devices and stole over 50 million passwords. Group-IB discovered 34 Russian-speaking groups behind information-stealing malware…
-
"Education Accounts for 7.3% of Cybersecurity Incidents Across Industries in 2022, Up from 2.8% in 2021"IBM Security's X-Force Threat Intelligence Index for 2023 found that education, sixth on the list of ten evaluated industries, accounted for 7.3 percent of all cybersecurity incidents in 2022, up from 2.8 percent of all incidents in 2021. IBM Security…
-
"Cisco Fixed a Critical Command Injection Bug in IP Phone Series"To address a critical vulnerability, Cisco has released security updates for its IP Phone 6800, 7800, 7900, and 8800 Series products. The flaw, tracked as CVE-2023-20078, is a web-based management interface command injection vulnerability. Insufficient…
-
"Major Phishing Campaign Targets Trezor Crypto Wallets"Cryptocurrency hardware firm Trezor has recently acknowledged an ongoing multi-channel phishing campaign designed to trick customers into granting access to their wallets. According to the firm, the attackers contact the victims via phone call, SMS…
-
"Russian Government Bans Foreign Messaging Apps"According to a new law that went into force yesterday, Russian government officials will no longer be able to use messaging apps developed and run by foreign companies. The new law applies to government agencies and organizations. The law…
-
"This Hacker Tool Can Pinpoint a DJI Drone Operator's Exact Location"Consumer drones have become potential war tools since they can perform high-altitude surveillance, conduct reconnaissance, and even launch weapons, all while their operator is safely hidden as far as miles away. However, hackers have found that for…
-
"OAuth Vulnerabilities on Booking.com Could Have Resulted in Account Takeovers"Salt Security has revealed new threat research highlighting critical security vulnerabilities discovered on the website of Booking Holdings, a popular hotel booking service. The flaws stem from how the site's designers implemented the Open Authorization…