Telegram to Share User Info With Law Enforcement in Policy Shift

The encrypted messaging service said it will share users’ IP addresses and phone numbers with authorities when requested.

darkreading – ​Read More

Critical Automated Tank Gauge Bugs Threaten Critical Infrastructure

The security vulnerabilities could lead to everything from gas spills to operations data disclosure, affecting gas stations, airports, military bases, and other hypersensitive locations.

darkreading – ​Read More

CrowdStrike Overhauls Testing and Rollout Procedures to Avoid System Crashes

CrowdStrike says it has revamped several testing, validation, and update rollout processes to prevent a repeat of the July BSOD incident.

The post CrowdStrike Overhauls Testing and Rollout Procedures to Avoid System Crashes appeared first on SecurityWeek.

SecurityWeek – ​Read More

Automatic Tank Gauges Used in Critical Infrastructure Plagued by Critical Vulnerabilities

Bitsight finds critical vulnerabilities in several automatic tank gauge (ATG) products used in various critical infrastructure sectors.

The post Automatic Tank Gauges Used in Critical Infrastructure Plagued by Critical Vulnerabilities appeared first on SecurityWeek.

SecurityWeek – ​Read More

Necro Android Malware Found in Popular Camera and Browser Apps on Play Store

Altered versions of legitimate Android apps associated with Spotify, WhatsApp, and Minecraft have been used to deliver a new version of a known malware loader called Necro.
Kaspersky said some of the malicious apps have also been found on the Google Play Store. They have been cumulatively downloaded 11 million times. They include –

Wuta Camera – Nice Shot Always (com.benqu.wuta) – 10+ million

The Hacker News – ​Read More

AI-Generated Malware Found in the Wild

HP has intercepted an email campaign comprising a standard malware payload delivered by an AI-generated dropper.

The post AI-Generated Malware Found in the Wild appeared first on SecurityWeek.

SecurityWeek RSS Feed – ​Read More

Microsoft Initiative the ‘Largest Cybersecurity Engineering Effort in History’

The Secure Future Initiative was created around the same time the U.S. Cyber Safety Review Board chided Redmond for having a poor security culture.

Security | TechRepublic – ​Read More

2024 Exposed: The Alarming State of Australian Data Breaches

Implementing multi-factor authentication, supplier risk-management frameworks, and staff security training could help to reduce data breaches.

Security | TechRepublic – ​Read More

Harnessing the Power of Cloud App Development and DevOps for Modern Businesses

Leverage Cloud App Development and DevOps to boost business agility, scalability, and security. Optimize operations, deploy faster, and…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Microsoft Names Deputy CISOs, Governance Council to Manage Security Push 

Microsoft says each Deputy CISO will oversee specific domains, ranging from gaming and cloud security to AI and government systems.

The post Microsoft Names Deputy CISOs, Governance Council to Manage Security Push  appeared first on SecurityWeek.

SecurityWeek – ​Read More