The Drop in Ransomware Attacks in 2024 and What it Means

The ransomware industry surged in 2023 as it saw an alarming 55.5% increase in victims worldwide, reaching a staggering 5,070. But 2024 is starting off showing a very different picture. While the numbers skyrocketed in Q4 2023 with 1309 cases, in Q1 2024, the ransomware industry was down to 1,048 cases. This is a 22% decrease in ransomware attacks compared to Q4 2023.
Figure

The Hacker News – ​Read More

Permiso Secures $18.5 Million in Series A Funding to Fortify Cloud Identity Security Landscape

According to Silicon Angle, this significant injection of capital is spearheaded by Altimeter Capital Management LP, with notable participation from Point72 Ventures LLC, marking a new milestone for the company founded in 2020.

Cyware News – Latest Cyber News – ​Read More

Google Adds V8 Sandbox to Chrome

Google fights Chrome V8 engine memory safety bugs with a new sandbox and adds it to the bug bounty program.

The post Google Adds V8 Sandbox to Chrome appeared first on SecurityWeek.

SecurityWeek – ​Read More

Over 92,000 Internet-Facing D-Link NAS Devices can be Easily Hacked

A researcher who goes online with the moniker ‘Netsecfish’ disclosed a new arbitrary command injection and hardcoded backdoor flaw, tracked as CVE-2024-3273, that impacts multiple end-of-life D-Link NAS device models.

Cyware News – Latest Cyber News – ​Read More

Company Offering $30 Million for Android, iOS, Browser Zero-Day Exploits

Crowdfense has announced a $30 million exploit acquisition program covering Android, iOS, Chrome, and Safari zero-days.

The post Company Offering $30 Million for Android, iOS, Browser Zero-Day Exploits appeared first on SecurityWeek.

SecurityWeek – ​Read More

US Chamber of Commerce, Industry Groups Call for 30-Day Delay in CIRCIA Rules

The U.S. Chamber of Commerce and multiple industry leaders are calling for a month-long extension of the 60-day comment period for a new incident reporting rule being issued by the top cybersecurity agency in the U.S.

Cyware News – Latest Cyber News – ​Read More

AI Scam Calls: How to Protect Yourself, How to Detect

AI tools are getting better at cloning people’s voices, and scammers are using these new capabilities to commit fraud. Avoid getting swindled by following these expert tips.

Security Latest – ​Read More

UK: Police Launch Inquiry After MPs Targeted in Apparent ‘Spear-Phishing’ Attack

A police investigation has been launched after MPs were apparently targeted in a “spear-phishing” attack, in what security experts believe could be an attempt to compromise the UK Parliament.

Cyware News – Latest Cyber News – ​Read More

Wiz Discovers Flaws in GenAI Models Enabling Customer Data Theft

Cloud security provider Wiz found two critical architecture flaws in generative AI models uploaded to Hugging Face, namely shared Inference infrastructure takeover and shared CI/CD takeover.

Cyware News – Latest Cyber News – ​Read More

Persistent Magento Backdoor Hidden in XML

Attackers are using a new method for malware persistence on Magento servers. Sansec discovered a cleverly crafted layout template in the database, which was used to automatically inject malware.

Cyware News – Latest Cyber News – ​Read More