-
"Patch Now: Cybercriminals Set Sights on Critical IBM File Transfer Bug"There is a critical bug in IBM's popular Aspera Faspex file transfer stack that enables the execution of arbitrary code. This bug is attracting an increasing number of cybercriminals, including ransomware gangs, as organizations fail to patch it. Rapid7…
-
"Companies Struggle to Protect against Insider Risks"Even though over 70 percent of companies claim to have an Insider Risk Management (IRM) program, a new report from Code42 Software found that data loss incidents increased by 32 percent among the same organizations. Based on a survey of 700 cybersecurity…
-
"Google TAG Shares Details about Exploit Chains Used to Install Commercial Spyware"Google's Threat Analysis Group (TAG) released information regarding two different attack campaigns involving the exploitation of multiple zero-day flaws against Android, iOS, and Chrome. According to researchers, both campaigns were limited and highly…
-
"Attacks Targeting APIs Increased By 400% in Last Six Months"Security researchers at Salt Security have discovered that attacks targeting application programming interfaces (APIs) have increased by 400% in the last six months. The researchers also found that 80% of these attacks happened over authenticated…
-
"Clop Ransomware Group Exploits GoAnywhere MFT Flaw"
The ransomware gang known as Clop has been observed exploiting a pre-authentication command injection vulnerability (CVE-2023-0669) in Fortra's file transfer solution GoAnywhere MFT. The high-severity vulnerability has a CVSS:3.1 score of 7.2 and…
-
Spotlight on Lablet Research #40 - Reasoning about Accidental and Malicious Misuse via Formal MethodsSpotlight on Lablet Research #40 - Reasoning about Accidental and Malicious Misuse via Formal Methods
-
SoS Musings #71 - Security and Privacy for Blind and Low-Vision PeopleSoS Musings #71 - Security and Privacy for Blind and Low-Vision People
-
-
Cyber Scene #78 - U.S. on China’s TikTok: Tempus FugitCyber Scene #78 - U.S. on China’s TikTok: Tempus Fugit
-
"Just 1% of Cloud Permissions Are Actively Used"
According to security researchers at Microsoft, a surge in workload identities, super admins, and “over-permissioning” is driving increased cyber risk for organizations running cloud infrastructure. The researchers calculated that over 40,000…
-
"Researchers Identify 6 Challenges Humans Face with Artificial Intelligence"
Ozlem Garibay, an assistant professor in the University of Central Florida's (UCF) Department of Industrial Engineering and Management Systems, and 26 other international experts who have diverse backgrounds in Artificial Intelligence (AI) technology…
-
"Casino Giant Crown Resorts Investigating Ransomware Group’s Data Theft Claims"Australian casino giant Crown Resorts recently confirmed that the Cl0p ransomware group contacted them to claim they had stolen data as part of the GoAnywhere attack. The incident occurred in late January when a zero-day vulnerability in Fortra’s…
News