New Gorilla Botnet Launches Over 300,000 DDoS Attacks Across 100 Countries

/in

Cybersecurity researchers have discovered a new botnet malware family called Gorilla (aka GorillaBot) that is a variant of the leaked Mirai botnet source code.
Cybersecurity firm NSFOCUS, which identified the activity last month, said the botnet “issued over 300,000 attack commands, with a shocking attack density” between September 4 and September 27, 2024. No less than 20,000 commands designed

The Hacker News – ​Read More

Okta Tells Users to Check for Potential Exploitation of Newly Patched Vulnerability

/in

Okta has resolved a vulnerability that could have allowed attackers to bypass sign-on policies and gain access to applications.

The post Okta Tells Users to Check for Potential Exploitation of Newly Patched Vulnerability appeared first on SecurityWeek.

SecurityWeek – ​Read More

Modernization of Authentication: Webinar on MFA, Passwords, and the Shift to Passwordless

/in

The interest in passwordless authentication has increased due to the rise of hybrid work environments and widespread digitization. This has led to a greater need for reliable data security and user-friendly interfaces. Without these measures, organizations are at risk of experiencing data breaches, leaks, and significant financial losses. 
While traditional password-based systems offer

The Hacker News – ​Read More

Cybersecurity Certifications for Web Developers: Your Path to Digital Defense

/in

Web developers are facing more and more cybersecurity challenges in their day-to-day work. As the complexity of Web applications grows, so does the need for robust security measures. For developers looking to enhance their security skills or transition into cybersecurity roles, certifications can provide a structured path to gaining knowledge and credibility in the field. These two go hand in…

Source

TechSplicer – ​Read More

Critical Apache Avro SDK Flaw Allows Remote Code Execution in Java Applications

/in

A critical security flaw has been disclosed in the Apache Avro Java Software Development Kit (SDK) that, if successfully exploited, could allow the execution of arbitrary code on susceptible instances.
The flaw, tracked as CVE-2024-47561, impacts all versions of the software prior to 1.11.4.
“Schema parsing in the Java SDK of Apache Avro 1.11.3 and previous versions allows bad actors to execute

The Hacker News – ​Read More

238,000 Comcast Customers Hit by FBCS Ransomware Attack

/in

Comcast says over 230,000 customers were affected by a data breach at Financial Business and Consumer Solutions.

The post 238,000 Comcast Customers Hit by FBCS Ransomware Attack appeared first on SecurityWeek.

SecurityWeek – ​Read More

China’s Salt Typhoon Hacked AT&T, Verizon: Report

/in

The China-linked group Salt Typhoon hacked AT&T and Verizon, possibly compromising wiretap systems, according to WSJ.

The post China’s Salt Typhoon Hacked AT&T, Verizon: Report appeared first on SecurityWeek.

SecurityWeek – ​Read More

Geopolitical Cybernews Digest: Digital Frontlines Shift

/in

Forget firewalls and antivirus software for a moment. Cybersecurity isn’t just about protecting data. The battles are fierce in the digital playground as well, where global influence and national security are at stake. Here are important cyber security developments from across the globe: In a significant blow to Russian cyber espionage…

Source

TechSplicer – ​Read More

E.U. Court Limits Meta’s Use of Personal Facebook Data for Targeted Ads

/in

Europe’s top court has ruled that Meta Platforms must restrict the use of personal data harvested from Facebook for serving targeted ads even when users consent to their information being used for advertising purposes, a move that could have serious consequences for ad-driven companies operating in the region.
“An online social network such as Facebook cannot use all of the personal data

The Hacker News – ​Read More

5 best hurricane-tracking apps that I rely on as a Floridian tech pro

/in

I’ve weathered multiple hurricanes from my South Florida home and refined my approach to preparing for them along the way. These are my essential weather-tracking tools that I use to stay ahead of severe storms.

Latest stories for ZDNET in Security – ​Read More