Latrodectus Malware Increasingly Used by Cybercriminals

/in

Latrodectus malware has been increasingly used by cybercriminals, with recent campaigns targeting the financial, automotive and healthcare sectors. 

The post Latrodectus Malware Increasingly Used by Cybercriminals appeared first on SecurityWeek.

SecurityWeek – ​Read More

Palo Alto Networks Adds New Capabilities to OT Security Solution

/in

Palo Alto Networks has added new remote access, virtual patching and firewall capabilities to its OT Security solution.

The post Palo Alto Networks Adds New Capabilities to OT Security Solution appeared first on SecurityWeek.

SecurityWeek – ​Read More

Pharma Giant Johnson & Johnson Discloses Data Breach

/in

Johnson & Johnson has disclosed a data breach impacting the personal information of thousands of people.

The post Pharma Giant Johnson & Johnson Discloses Data Breach appeared first on SecurityWeek.

SecurityWeek – ​Read More

VMware Releases vCenter Server Update to Fix Critical RCE Vulnerability

/in

VMware has released software updates to address an already patched security flaw in vCenter Server that could pave the way for remote code execution.
The vulnerability, tracked as CVE-2024-38812 (CVSS score: 9.8), concerns a case of heap-overflow vulnerability in the implementation of the DCE/RPC protocol.
“A malicious actor with network access to vCenter Server may trigger this vulnerability by

The Hacker News – ​Read More

CISA Adds ScienceLogic SL1 Vulnerability to Exploited Catalog After Active Zero-Day Attack

/in

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a critical security flaw impacting ScienceLogic SL1 to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation as a zero-day.
The vulnerability in question, tracked as CVE-2024-9537 (CVSS v4 score: 9.3), refers to a bug involving an unspecified third-party component that could

The Hacker News – ​Read More

Russia-Linked Hackers Attack Japan’s Govt, Ports

/in

Russia-linked hackers have taken aim at Japan, following its ramping up of military exercises with regional allies and the increase of its defense budget.

darkreading – ​Read More

Unmanaged Cloud Credentials Pose Risk to Half of Orgs

/in

These types of “long-lived” credentials pose a risk for users across all major cloud service providers, and must meet their very timely ends, researchers say.

darkreading – ​Read More

Meta tests facial recognition for spotting ‘celeb-bait’ ads scams and easier account recovery

/in

Meta is expanding tests of facial recognition as an anti-scam measure to combat celebrity scam ads and more broadly, the Facebook owner announced Monday. Monika Bickert, Meta’s VP of content policy, wrote in a blog post that some of the tests aim to bolster its existing anti-scam measures, such as the automated scans (using machine […]

© 2024 TechCrunch. All rights reserved. For personal use only.

Security News | TechCrunch – ​Read More

Cisco Disables DevHub Access After Security Breach

/in

The networking company confirms that cyberattackers illegally accessed data belonging to some of its customers.

darkreading – ​Read More

Internet Archive Gets Pummeled in Round 2 Breach

/in

This latest breach was through Zendesk, a customer service platform that the organization uses.

darkreading – ​Read More