Palo Alto Networks has released IoCs for the attacks exploiting a newly uncovered firewall zero-day vulnerability.
The post Palo Alto Networks Releases IoCs for New Firewall Zero-Day appeared first on SecurityWeek.
Category Added in a WPeMatico Campaign
Fortinet VPN Zero-Day Exploited in Malware Attacks Remains Unpatched: Report
The DeepData malware framework was seen exploiting a Fortinet VPN client for Windows zero-day that remains unpatched.
The post Fortinet VPN Zero-Day Exploited in Malware Attacks Remains Unpatched: Report appeared first on SecurityWeek.
AnnieMac Data Breach Impacts 171,000 People
AnnieMac Home Mortgage is informing over 171,000 individuals that their data has been compromised in a hacker attack.
The post AnnieMac Data Breach Impacts 171,000 People appeared first on SecurityWeek.
Library of Congress Says an Adversary Hacked Some Emails
The Library of Congress has notified lawmakers of a “cyber breach” of its IT system by an adversary and a hack of emails.
The post Library of Congress Says an Adversary Hacked Some Emails appeared first on SecurityWeek.
T-Mobile Also Targeted in Chinese Telecom Hacking Campaign
T-Mobile has also been targeted by the Chinese group Salt Typhoon in a major espionage campaign targeting US telecom companies.
The post T-Mobile Also Targeted in Chinese Telecom Hacking Campaign appeared first on SecurityWeek.
Homeland Security Department Releases Framework for Using AI in Critical Infrastructure
The framework recommends that AI developers evaluate potentially dangerous capabilities in their products, ensure their products align with “human-centric values” and protect users’ privacy.
The post Homeland Security Department Releases Framework for Using AI in Critical Infrastructure appeared first on SecurityWeek.
SurePath AI Raises $5.2 Million for Gen-AI Governance Solution
SurePath AI has raised $5.2 million in seed funding for a solution that helps enterprises securely use generative AI.
The post SurePath AI Raises $5.2 Million for Gen-AI Governance Solution appeared first on SecurityWeek.
Glove Stealer Malware Bypasses Chrome’s App-Bound Encryption
The Glove Stealer malware leverages a recently disclosed App-Bound encryption bypass method in attacks.
The post Glove Stealer Malware Bypasses Chrome’s App-Bound Encryption appeared first on SecurityWeek.
In Other News: TSA Wants New Cyber Rules, Scam Call Detection in Android, SIM Swappers Arrested
Noteworthy stories that might have slipped under the radar: TSA proposes new cyber rules for pipelines and railroads, Google adds scam call detection to Android, SIM swappers arrested in US.
The post In Other News: TSA Wants New Cyber Rules, Scam Call Detection in Android, SIM Swappers Arrested appeared first on SecurityWeek.
Known Brand, Government Domains Hijacked via Sitting Ducks Attacks
Threat actors have hijacked over 70,000 domains, including known brands and government entities, because of failed domain ownership verification.
The post Known Brand, Government Domains Hijacked via Sitting Ducks Attacks appeared first on SecurityWeek.