News
-
"Jackson County IT Systems Hit By Ransomware Attack"Jackson County in Missouri recently reported significant disruptions within its IT systems caused by a ransomware attack.
-
"Wiz Discovers Flaws in GenAI Models Enabling Customer Data Theft"Wiz, a cloud security provider, discovered two critical architecture flaws in generative Artificial Intelligence (AI) models uploaded to Hugging Face, the leading AI model and application-sharing platform.
-
"New Wave of JSOutProx Malware Targeting Financial Firms in APAC and MENA"A new version of "JSOutProx" is targeting financial institutions in the Asia-Pacific (APAC) and Middle East and North Africa (MENA). Resecurity described JSOutProx as a sophisticated attack framework that uses both JavaScript and .NET.
-
"Cyberattack Causes Disruptions at Omni Hotels"Omni Hotels & Resorts has recently told customers that the recent disruptions have been caused by a cyberattack that forced it to shut down some systems.
-
"US Cancer Center Data Breach Impacting 800,000"Cancer treatment and research center City of Hope recently started notifying over 800,000 individuals that their personal and health information was compromised in a data breach.
-
"SEI and OpenAI Recommend Ways To Evaluate Large Language Models for Cybersecurity Applications"Carnegie Mellon University's (CMU) Software Engineering Institute (SEI) and OpenAI published a white paper titled "Considerations for Evaluating Large Language Models for Cybersecurity Tasks." The paper finds that Large Language Models (LLMs) could be
-
"New HTTP/2 DoS Attack Potentially More Severe Than Record-Breaking Rapid Reset"A researcher named Bartek Nowotarski has disclosed a new Denial-of-Service (DoS) attack method called "HTTP/2 Continuation Flood," which could pose a more serious threat than Rapid Reset, the vulnerability exploited in 2023 to launch the largest Distri
-
"Google Chrome Beta Tests New DBSC Protection Against Cookie-Stealing Attacks"Google is testing a new Chrome feature called Device Bound Session Credentials (DBSC) to help protect users from session cookie theft by malware.
-
"Attackers Abuse Google Ad Feature to Target Slack, Notion Users"Attackers are using Google Ads to spread information-stealing malware, launching an ad-tracking feature to lure corporate users with fake ads for collaborative groupware such as Slack and Notion.
-
"Heartbleed is 10 Years Old – Farewell Heartbleed, Hello QuantumBleed!"The Heartbleed bug turned ten years old on April 1. In March 2014, Google and Codenomicon discovered the Heartbleed bug in OpenSSL, and it was reported on April 1, 2014.
-
"USF Research Reveals Language Barriers Limit Effectiveness of Cybersecurity Resources"Fawn Ngo, an associate professor at the University of South Florida College of Behavioral and Community Sciences, explored the connections among demographic characteristics, cyber hygiene practices, and cyber victimization using a sample of Limited Eng
-
"Cloud Email Filtering Bypass Attack Works 80% of the Time"Researchers have discovered a misconfiguration in popular enterprise cloud-based email spam filtering services. The study shows that organizations are far more vulnerable to email-based cyber threats than they realize.