Deloitte Says No Threat to Sensitive Data After Hacker Claims Server Breach

Deloitte says no sensitive data exposed after a notorious hacker leaked what he claimed to be internal communications. 

The post Deloitte Says No Threat to Sensitive Data After Hacker Claims Server Breach appeared first on SecurityWeek.

SecurityWeek – ​Read More

Geopolitical Cybernews Digest: Chinese APT Exploits GeoServer, Twelve Targets Russian Networks, UNC1860 Assists Iranian APTs

Trend Micro researchers have identified a campaign conducted by the China-linked APT group Earth Baxia, which has targeted government organizations in Taiwan and other Asia-Pacific (APAC) countries. The threat actors have exploited a recently patched vulnerability in OSGeo GeoServer (CVE-2024-36401), allowing for remote code execution (RCE) via unsafe evaluation of XPath expressions.

Source

TechSplicer Blog – ​Read More

Telegram Agrees to Share User Data With Authorities for Criminal Investigations

In a major policy reversal, the popular messaging app Telegram has announced it will give users’ IP addresses and phone numbers to authorities in response to valid legal requests in an attempt to rein in criminal activity on the platform.
“We’ve made it clear that the IP addresses and phone numbers of those who violate our rules can be disclosed to relevant authorities in response to valid legal

The Hacker News – ​Read More

Malicious Python Packages Deliver PondRAT Backdoor: North Korean Group Targets Developers

Unit 42 researchers have recently uncovered an ongoing campaign where the North Korea-linked APT group, Gleaming Pisces (also known as Citrine Sleet), is distributing the new PondRAT backdoor through infected Python packages. This brilliant campaign poses a significant threat, as the attackers are infecting packages in the Python Package Index (PyPI) repository, and use it to spread across supply…

Source

TechSplicer Blog – ​Read More

Meet UNC1860: Iran’s Low-Key Access Broker for State Hackers

The group has used more than 30 custom tools to target high-value government and telecommunications organizations on behalf of Iranian intelligence services, researchers say.

darkreading – ​Read More

OpenAI tackles global language divide with massive multilingual AI dataset release

OpenAI releases multilingual AI dataset evaluating 14 languages to expand global reach and accessibility of language models.Read More

Security News | VentureBeat – ​Read More

Hacker Leaks 12,000 Alleged Twilio Call Records with Audio Recordings

A hacker has leaked 12,000 alleged Twilio call records, including phone numbers and audio recordings. The breach exposes…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Crypto scammers hack OpenAI’s press account on X

OpenAI’s official press account on X was compromised by cryptocurrency scammers. Or, at least that’s what appears to have happened. Late Monday afternoon, OpenAI Newsroom, an account OpenAI recently launched to spotlight product- and policy-related announcements, posted about a supposedly new OpenAI-branded blockchain token, “$OPENAI.” “[$OPEANAI bridges] the gap between Al and blockchain technology,” the […]

© 2024 TechCrunch. All rights reserved. For personal use only.

Security News | TechCrunch – ​Read More

Microsoft Trims Cloud Cyberattack Surface in Security Push

The company has jettisoned hundreds of thousands of unused apps and millions of unused tenants as part of its Secure Future Initiative.

darkreading – ​Read More

Kaspersky Rolls Back for US Customers, Makes Way for UltraAV

Some users complain they had no idea the switch would be automatic on their devices, vowing to uninstall the unwanted antivirus software.

darkreading – ​Read More