New Linux Kernel Exploit Technique ‘SLUBStick’ Discovered by Researchers

/in

Cybersecurity researchers have shed light on a novel Linux kernel exploitation technique dubbed SLUBStick that could be exploited to elevate a limited heap vulnerability to an arbitrary memory read-and-write primitive.
“Initially, it exploits a timing side-channel of the allocator to perform a cross-cache attack reliably,” a group of academics from the Graz University of Technology said [PDF]. ”

The Hacker News – ​Read More

NHS Software Supplier Advanced Faces $7.6 Million Fine Over Ransomware Attack Failings

/in

NHS software supplier Advanced faces a hefty fine of over £6 million (~$7.6 Million) for failing to protect personal information during a ransomware attack that impacted the National Health Service in the UK.

Cyware News – Latest Cyber News – ​Read More

Phishing Attacks Can Bypass Microsoft 365 Email Safety Warnings

/in

A vulnerability in Microsoft 365’s anti-phishing measures allows malicious actors to deceive users into opening harmful emails by…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Black Hat Roundup 2024: What to Expect From This Week’s Security Events

/in

Discover the latest cybersecurity trends and techniques in this year’s Black Hat and DEF CON roundup.

Security | TechRepublic – ​Read More

The API Security Crisis: Why Your Company Could Be Next

/in

You’re only as strong as your weakest security link.

darkreading – ​Read More

Scamnetic Emerges From Stealth With AI-Based Scam Detection Solution

/in

Scamnetic emerges from stealth mode with an AI-based scam detection solution and over $1 million in pre-seed funding.

The post Scamnetic Emerges From Stealth With AI-Based Scam Detection Solution appeared first on SecurityWeek.

SecurityWeek – ​Read More

Cyber Training Organization Pledges $15 Million in Education Programs

/in

EC-Council, a cyber certification organization, has pledged $15 million in scholarships to support over 50,000 students in cybersecurity programs. The goal is to help students earn industry credentials and enhance their cybersecurity skills.

Cyware News – Latest Cyber News – ​Read More

Ransomware Swells Despite Collective Push to Curb Attacks

/in

Rapid7 researchers noted over 2,570 attacks in the first half of 2024, equating to around 14 attacks daily. The number of ransomware groups posting on data leak sites surged 67% compared to the previous year.

Cyware News – Latest Cyber News – ​Read More

Threat Actors Announced Doubleface Ransomware, Claims Fully Undetectable

/in

Threat actors have introduced Doubleface ransomware, claiming it to be fully undetectable by major antivirus software. The ransomware utilizes a unique algorithm with AES-128 and RSA-4096 encryption, making decryption difficult without the right key.

Cyware News – Latest Cyber News – ​Read More

Abnormal Security Raises $250M on $5.1B Valuation to Enhance AI-Driven Cyber Protection

/in

Abnormal Security, an AI-driven cybersecurity company, has raised $250 million in funding, valuing the company at $5.1 billion. The funding will support their mission of using AI to protect against cybercrime by understanding human behavior.

Cyware News – Latest Cyber News – ​Read More