NIST Finalizes Post-Quantum Encryption Standards
The new standards from NIST are designed for two tasks: general encryption and digital signatures.
darkreading – Read More
Cybercriminal Duo Attracts FBI Notice by Spending Big & Living Large
Cash may be king, but law enforcement keeps track of who spends it, especially when it’s in the six-figure range.
darkreading – Read More
Critical Ivanti vTM Bug Allows Unauthorized Admin Access
The CVSS 9.8 authentication bypass in Ivanti’s traffic manager admin panel already has a proof-of-concept (PoC) exploit lurking in the wild.
darkreading – Read More
Inc Ransomware Encryptor Contains Keys to Victim Data Recovery
The threat group is disrupting healthcare organizations. Victims can help themselves, though, even after compromise, by being careful in the decryption process.
darkreading – Read More
APT41 Spinoff Expands Chinese Actor’s Scope Beyond Asia
Earth Baku, yet another subgroup of the highly active and increasingly sophisticated collective, is moving into EMEA with new malware and living-off-the-land (LOL) tactics.
darkreading – Read More
FBI Shuts Down Dozens of Radar/Dispossessor Ransomware Servers
Computer infrastructure in the US, UK, and Germany associated with the cybercriminal group, which targeted SMBs using double extortion, is officially out of commission.
darkreading – Read More
Microsoft Azure AI Health Bot Infected With Critical Vulnerabilities
Privilege escalation flaws in the healthcare chatbot platform could have allowed unauthorized cross-tenant access and management of other customers’ resources.
darkreading – Read More
StickmanCyber Report: A Look Inside Australia’s Cybersecurity Skills Crisis
A StickmanCyber report reveals a critical cybersecurity skills shortage in Australia, which can have both short- and long-term business implications
Security | TechRepublic – Read More
Microsoft Warns of Six Windows Zero-Days Being Actively Exploited
Microsoft’s security response team pushed out documentation for almost 90 vulnerabilities across Windows and OS components and marked several flaws in the actively exploited category.
The post Microsoft Warns of Six Windows Zero-Days Being Actively Exploited appeared first on SecurityWeek.
SecurityWeek – Read More
Adobe Calls Attention to Massive Batch of Code Execution Flaws
Patch Tuesday: Adobe patches 72 security vulnerabilities and warns that Windows and macOS users are at risk of code execution, memory leaks, and denial-of-service attacks.
The post Adobe Calls Attention to Massive Batch of Code Execution Flaws appeared first on SecurityWeek.
SecurityWeek – Read More