Amazon has seized domains used by the Russian APT29 hacking group in targeted attacks against government and military organizations to steal Windows credentials and data using malicious Remote Desktop Protocol connection files. […]
In Other News: CVE Turns 25, Henry Schein Data Breach, Reward for Shahid Hemmat Hackers
Noteworthy stories that might have slipped under the radar: CVE Program celebrates 25th anniversary, one year after ransomware attack Henry Schein says 160,000 are impacted, US offering rewards for Shahid Hemmat hackers.
The post In Other News: CVE Turns 25, Henry Schein Data Breach, Reward for Shahid Hemmat Hackers appeared first on SecurityWeek.
Concentric AI Secures $45M Series B Funding to Expand DSPM Tech
Concentric AI banks capital to compete in the data security governance market that includes DSPM and Data Access Governance technologies.
The post Concentric AI Secures $45M Series B Funding to Expand DSPM Tech appeared first on SecurityWeek.
LinkedIn Hit With 310 Million Euro Fine for Data Privacy Violations From Irish Watchdog
LinkedIn has received a 310 million euro fine from Ireland’s Data Protection Commission for data privacy violations.
The post LinkedIn Hit With 310 Million Euro Fine for Data Privacy Violations From Irish Watchdog appeared first on SecurityWeek.
Researchers Discover Command Injection Flaw in Wi-Fi Alliance’s Test Suite
A security flaw impacting the Wi-Fi Test Suite could enable unauthenticated local attackers to execute arbitrary code with elevated privileges.
The CERT Coordination Center (CERT/CC) said the vulnerability, tracked as CVE-2024-41992, said the susceptible code from the Wi-Fi Alliance has been found deployed on Arcadyan FMIMG51AX000J routers.
“This flaw allows an unauthenticated local attacker to
The CERT Coordination Center (CERT/CC) said the vulnerability, tracked as CVE-2024-41992, said the susceptible code from the Wi-Fi Alliance has been found deployed on Arcadyan FMIMG51AX000J routers.
“This flaw allows an unauthenticated local attacker to
Over $1 Million Paid Out at Pwn2Own Ireland 2024
Pwn2Own Ireland 2024 participants have earned over $1 million for camera, printer, NAS device, smart speaker and smartphone exploits.
The post Over $1 Million Paid Out at Pwn2Own Ireland 2024 appeared first on SecurityWeek.
US, Australia Release New Security Guide for Software Makers
CISA, FBI, and ACSC have published guidance to help software manufacturers establish secure deployment processes.
The post US, Australia Release New Security Guide for Software Makers appeared first on SecurityWeek.
Apple Opens PCC Source Code for Researchers to Identify Bugs in Cloud AI Security
Apple has publicly made available its Private Cloud Compute (PCC) Virtual Research Environment (VRE), allowing the research community to inspect and verify the privacy and security guarantees of its offering.
PCC, which Apple unveiled earlier this June, has been marketed as the “most advanced security architecture ever deployed for cloud AI compute at scale.” With the new technology, the idea is
PCC, which Apple unveiled earlier this June, has been marketed as the “most advanced security architecture ever deployed for cloud AI compute at scale.” With the new technology, the idea is
Joint Statement by FBI and CISA on PRC Activity Targeting Telecommunications
Landmark Admin Discloses Data Breach Impacting 800,000 People
Insurance administrator Landmark Admin says personal information stolen in a ransomware attack earlier this year.
The post Landmark Admin Discloses Data Breach Impacting 800,000 People appeared first on SecurityWeek.