Microsoft has announced that Windows Server 2025, the latest version of its server operating system, is generally available starting Friday, November 1st. […]
Custom “Pygmy Goat” malware used in Sophos Firewall hack on govt network
UK’s National Cyber Security Centre (NCSC) has published an analysis of a Linux malware named “Pigmy Goat” created to backdoor Sophos XG firewall devices as part of recently disclosed attacks by Chinese threat actors. […]
Windows infected with backdoored Linux VMs in new phishing attacks
A new phishing campaign dubbed ‘CRON#TRAP’ infects Windows with a Linux virtual machine that contains a built-in backdoor to give stealthy access to corporate networks. […]
Solving the painful password problem with better policies
Weak and reused credentials continue to plague users and organizations. Learn from Specops software about why passwords are so easy to hack and how organizations can fortify their security efforts. […]
City of Columbus: Data of 500,000 stolen in July ransomware attack
The City of Columbus, Ohio, notified 500,000 individuals that a ransomware gang stole their personal and financial information in a July 2024 cyberattack. […]
Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning
Cybersecurity researchers have disclosed six security flaws in the Ollama artificial intelligence (AI) framework that could be exploited by a malicious actor to perform various actions, including denial-of-service, model poisoning, and model theft.
“Collectively, the vulnerabilities could allow an attacker to carry out a wide-range of malicious actions with a single HTTP request, including
“Collectively, the vulnerabilities could allow an attacker to carry out a wide-range of malicious actions with a single HTTP request, including
210,000 Impacted by Saint Xavier University Data Breach
Saint Xavier University is notifying over 210,000 individuals of personal information compromise in a July 2023 data breach.
The post 210,000 Impacted by Saint Xavier University Data Breach appeared first on SecurityWeek.
US Sentences Nigerian to 26 Years in Prison for Stealing Millions Through Phishing
Kolade Akinwale Ojelade was sentenced to 26 years in prison in the US for compromising email accounts through phishing and stealing millions.
The post US Sentences Nigerian to 26 Years in Prison for Stealing Millions Through Phishing appeared first on SecurityWeek.
Google Says Its AI Found SQLite Vulnerability That Fuzzing Missed
Google has showcased the capabilities of its Big Sleep LLM agent, which found a previously unknown exploitable memory safety issue in SQLite.
The post Google Says Its AI Found SQLite Vulnerability That Fuzzing Missed appeared first on SecurityWeek.
FBI Seeking Information on Chinese Hackers Targeting Sophos Firewalls
The FBI is asking for information on the Chinese threat actors targeting Sophos edge devices to compromise private and government entities.
The post FBI Seeking Information on Chinese Hackers Targeting Sophos Firewalls appeared first on SecurityWeek.