FBI Wraps Up Eradication Effort of Chinese ‘PlugX’ Malware
Two hacker groups were paid to develop malware targeting victims in the US, Europe, and Asia, as well as various Chinese dissident groups.
darkreading – Read More
Apple Bug Allows Root Protections Bypass Without Physical Access
Emergent macOS vulnerability lets adversaries circumvent Apple’s System Integrity Protection (SIP) by loading third-party kernels.
darkreading – Read More
Hackers are exploiting a new Fortinet firewall bug to breach company networks
Security researchers say “tens” of Fortinet devices have been compromised so far as part of the weeks-long hacking campaign.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
DOJ deletes China-linked PlugX malware off more than 4,200 US computers
U.S law enforcement accused the People’s Republic of China of paying hackers that are part of a well-known group called Mustang Panda to deploy the PlugX malware — which allows them to “infect, control, and steal information from victim computers.”
The Record from Recorded Future News – Read More
Adobe: Critical Code Execution Flaws in Photoshop
Patch Tuesday: Adobe ships patches for more than a dozen security defects in a wide range of software products.
The post Adobe: Critical Code Execution Flaws in Photoshop appeared first on SecurityWeek.
SecurityWeek – Read More
UK Considers Banning Ransomware Payment by Public Sector and CNI
Since no technical means have been found to curtail criminal extortion through prevention or attack, the new proposal is to eliminate its profitability.
The post UK Considers Banning Ransomware Payment by Public Sector and CNI appeared first on SecurityWeek.
SecurityWeek – Read More
Biden Signs Executive Order Aimed at Growing AI Infrastructure in the US
The executive order comes on the heels of the Biden administration’s proposed restrictions on exports of AI chips, an attempt to balance national security concerns about the technology with economic interests of producers and other countries.
The post Biden Signs Executive Order Aimed at Growing AI Infrastructure in the US appeared first on SecurityWeek.
SecurityWeek – Read More
US issues final rule barring Chinese, Russian connected car tech
The Commerce Department on Tuesday announced a new rule barring certain Chinese and Russian connected car technology from being imported to the United States.
The Record from Recorded Future News – Read More
Zero-Day Security Bug Likely Fueling Fortinet Firewall Attacks
An ongoing campaign targeting FortiGate devices with management interfaces exposed on the public Internet is leading to unauthorized administrative logins and configuration changes, creating new accounts, and performing SSL VPN authentication.
darkreading – Read More
How to Eliminate “Shadow AI” in Software Development
With a security-first culture fully in play, developers will view the protected deployment of AI as a marketable skill, and respond accordingly.
The post How to Eliminate “Shadow AI” in Software Development appeared first on SecurityWeek.
SecurityWeek – Read More