Apache HugeGraph Vulnerability Exploited in Wild

/in

A recently patched Apache HugeGraph-Server vulnerability tracked as CVE-2024-27348 is being targeted in attacks.

The post Apache HugeGraph Vulnerability Exploited in Wild appeared first on SecurityWeek.

SecurityWeek – ​Read More

Paris 2024 Olympics to Face Complex Cyber Threats

/in

Paris 2024 Olympics are expected to face a significant increase in cyber threats, with IDC predicting the Games will encounter a complex threat landscape and a large ecosystem of threat actors.

Cyware News – Latest Cyber News – ​Read More

Firmware Update Hides Bluetooth Fingerprints

/in

A team of researchers from the University of California San Diego has developed a firmware update to hide a smartphone’s unique Bluetooth fingerprint, which can be used to track the user.

Cyware News – Latest Cyber News – ​Read More

Chrome 126 Updates Patch High-Severity Vulnerabilities

/in

Chrome 126 security updates released this week resolve high-severity vulnerabilities reported by external researchers.

The post Chrome 126 Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek.

SecurityWeek – ​Read More

Ransomware Leak Site Posts Jumped 20% in Q2

/in

According to Reliaquest, ransomware incidents surged in Q2, with 1,237 organizations listed on data leak sites, a 20% increase from Q1. U.S. businesses were hit the hardest, accounting for over half of the victims.

Cyware News – Latest Cyber News – ​Read More

JPCERT/CC Warns of MirrorFace Attacks Against Japanese Organizations

/in

Initially, the targets of MirrorFace were media, political organizations, think tanks, and universities, but by 2023, the focus shifted to manufacturers and research institutions.

Cyware News – Latest Cyber News – ​Read More

ChatGPTriage: How can CISOs See and Control Employees’ AI Use?

/in

Building a database of AI destinations and capturing employee activity are essential steps in gaining visibility. Monitoring user prompts, responses, and data exchanged with AI models is crucial for understanding employee behavior.

Cyware News – Latest Cyber News – ​Read More

The US Supreme Court Kneecapped US Cyber Strategy

/in

After the Supreme Court limited the power of federal agencies to craft regulations, it’s likely up to Congress to keep US cybersecurity policy intact.

Security Latest – ​Read More

Security End-Run: ‘AuKill’ Shuts Down Windows-Reliant EDR Processes

/in

Russian threat actor FIN17 has shifted gears multiple times in recent years, focusing now on helping ransomware groups be even more covertly effective.

darkreading – ​Read More

Well-Established Cybercriminal Ecosystem Blooms in Iraq

/in

Researchers have uncovered a well-established cybercriminal ecosystem connected to a Telegram bot, with over 90,000 Arabic messages dating back to 2022, enabling a sophisticated network offering social media manipulation and financial theft services.

Cyware News – Latest Cyber News – ​Read More