Google Releases Open Source Library for Software Composition Analysis

/in

Google releases OSV-SCALIBR, an open source library for software composition analysis and file system scanning.

The post Google Releases Open Source Library for Software Composition Analysis appeared first on SecurityWeek.

SecurityWeek – ​Read More

US Announces Sanctions Against North Korean Fake IT Worker Network

/in

The US Treasury has sanctioned two individuals and four entities involved in the North Korean fake IT worker scheme.

The post US Announces Sanctions Against North Korean Fake IT Worker Network appeared first on SecurityWeek.

SecurityWeek – ​Read More

Industry Reactions to Biden’s Cybersecurity Executive Order: Feedback Friday

/in

Industry professionals comment on the Biden administration’s new executive order on cybersecurity. 

The post Industry Reactions to Biden’s Cybersecurity Executive Order: Feedback Friday appeared first on SecurityWeek.

SecurityWeek – ​Read More

Researchers Warn of NTLMv1 Bypass in Active Directory Policy

/in

Silverfort has discovered that a misconfiguration can bypass an Active Directory Group Policy designed to disable NTLMv1, allowing…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Vulnerabilities in SimpleHelp Remote Access Software May Lead to System Compromise

/in

Three vulnerabilities in SimpleHelp could allow attackers to compromise the remote access software’s server and the client machine.

The post Vulnerabilities in SimpleHelp Remote Access Software May Lead to System Compromise appeared first on SecurityWeek.

SecurityWeek – ​Read More

European Privacy Group Sues TikTok and AliExpress for Illicit Data Transfers to China

/in

Austrian privacy non-profit None of Your Business (noyb) has filed complaints accusing companies like TikTok, AliExpress, SHEIN, Temu, WeChat, and Xiaomi of violating data protection regulations in the European Union by unlawfully transferring users’ data to China.
The advocacy group is seeking an immediate suspension of such transfers, stating the companies in question cannot shield user data

The Hacker News – ​Read More

Russian APT Phishes Kazakh Gov’t for Strategic Intel

/in

A highly targeted cyber-intelligence campaign adds fuel to the increasingly complex relationship between the two former Soviet states.

darkreading – ​Read More

CISA warns of exploited Fortinet bugs as Microsoft issues its biggest Patch Tuesday in years

/in

The federal government and multiple cybersecurity firms warned of a zero-day vulnerability in FortiGate firewalls that hackers are actively exploiting.

The Record from Recorded Future News – ​Read More

Hackers Likely Stole FBI Call Logs From AT&T That Could Compromise Informants

/in

A breach of AT&T that exposed “nearly all” of the company’s customers may have included records related to confidential FBI sources, potentially explaining the bureau’s new embrace of end-to-end encryption.

Security Latest – ​Read More

Microsoft just built an AI that designs materials for the future. Here’s how it works.

/in

Credit: VentureBeat made with Midjourney

Microsoft researchers unveil MatterGen, a breakthrough AI system that generates novel materials for batteries and solar cells, accelerating scientific discovery 15 times faster than traditional methods while doubling success rates for stable compounds.Read More

Security News | VentureBeat – ​Read More