DuckDuckGo Is Taking Its Privacy Fight to Data Brokers

/in

Privacy-focused company DuckDuckGo is launching a tool to remove data from people-search websites, a VPN, and an identity theft restoration service.

Security Latest – ​Read More

Conservative Revolt in the House Blocks Effort to Reauthorize a Key US Spy Tool

/in

A bill that would reauthorize Section 702 of the Foreign Intelligence Surveillance Act was blocked by a conservative revolt.

The post Conservative Revolt in the House Blocks Effort to Reauthorize a Key US Spy Tool appeared first on SecurityWeek.

SecurityWeek – ​Read More

Google Pays Out $41,000 for Three Serious Chrome Vulnerabilities

/in

Google releases a Chrome 123 update to resolve three high-severity memory safety vulnerabilities.

The post Google Pays Out $41,000 for Three Serious Chrome Vulnerabilities appeared first on SecurityWeek.

SecurityWeek – ​Read More

New Technique Detected in an Open Source Supply Chain Attack

/in

Attackers create malicious GitHub repositories with popular names and topics, using techniques like automated updates and fake stars to boost search rankings and deceive users.

Cyware News – Latest Cyber News – ​Read More

AI Data Security Startup Cyera Confirms $300M Raise at a $1.4B Valuation

/in

The lead investor for the Series C funding is Coatue, which is new to the startup’s cap table. Other new investors include Spark Capital, Georgian, and strategic backer AT&T Ventures.

Cyware News – Latest Cyber News – ​Read More

Rust Addresses Critical Vulnerability on Windows

/in

The vulnerability, which carries a perfect 10 base severity score, is tracked as CVE-2024-24576. It affects the Rust standard library, which was found to be improperly escaping arguments when invoking batch files on Windows using the Command API.

Cyware News – Latest Cyber News – ​Read More

Raspberry Robin Now Spreading Through Windows Script Files

/in

First identified in late 2021, Raspberry Robin is a Windows worm initially seen targeting technology and manufacturing organizations. It has since grown to become one of the most prevalent threats facing enterprises.

Cyware News – Latest Cyber News – ​Read More

Palo Alto Networks Patches Vulnerabilities Allowing Firewall Disruption

/in

Palo Alto Networks patches several high-severity vulnerabilities, including ones that allow DoS attacks against its firewalls.

The post Palo Alto Networks Patches Vulnerabilities Allowing Firewall Disruption appeared first on SecurityWeek.

SecurityWeek – ​Read More

Google Cloud Unveils New AI-Powered Security Capabilities

/in

Google adds AI to cloud security features and announces other security capabilities for cloud customers.

The post Google Cloud Unveils New AI-Powered Security Capabilities appeared first on SecurityWeek.

SecurityWeek – ​Read More

Microsoft April 2024 Patch Tuesday fixes 150 security flaws, 67 RCEs

/in

Only three critical vulnerabilities were fixed as part of the April 2024 Patch Tuesday updates, but there are over 67 remote code execution bugs. More than half of the RCE flaws are found within Microsoft SQL drivers, likely sharing a common flaw.

Cyware News – Latest Cyber News – ​Read More