February 2025 – Page 10

Two Actively Exploited Security Flaws in Adobe and Oracle Products Flagged by CISA

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two security flaws impacting Adobe ColdFusion and Oracle Agile Product Lifecycle Management (PLM) to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The vulnerabilities in question are listed below –

CVE-2017-3066 (CVSS score: 9.8) – A deserialization vulnerability impacting

OpenAI bans ChatGPT accounts used by North Korean hackers

OpenAI says it blocked several North Korean hacking groups from using its ChatGPT platform to research future targets and find ways to hack into their networks. […]

Russia warns financial sector of major IT service provider hack

Russia’s National Coordination Center for Computer Incidents (NKTsKI) is warning organizations in the country’s credit and financial sector about a breach at LANIT, a major Russian IT service and software provider. […]

Microsoft tests ad-supported Office apps for Windows users

Microsoft has released ad-supported versions of its Office desktop apps, which have limited features but allow Windows users to edit their documents. […]

Microsoft launches ad-supported Office apps for Windows users

Microsoft has released ad-supported versions of its Office desktop apps, which have limited features but allow Windows users to edit their documents for free. […]

What Microsoft’s Majorana 1 Chip Means for Quantum Decryption

The question is whether Majorana 1 advances progress toward quantum computing – or for security professionals, the arrival of computers powerful enough to break PKE.

The post What Microsoft’s Majorana 1 Chip Means for Quantum Decryption appeared first on SecurityWeek.

Australia bans all Kaspersky products on government systems

The Australian government has banned all Kaspersky Lab products and web services from its systems and devices following an analysis that claims the company poses a significant security risk to the country. […]

Botnet targets Basic Auth in Microsoft 365 password spray attacks

A massive botnet of over 130,000 compromised devices is conducting password-spray attacks against Microsoft 365 (M365) accounts worldwide, attempting to confirm credentials. […]

Rad Security Raises $14 Million for AI, Cloud Security Platform

Rad Security has raised $14 million in Series A funding for a defense platform for AI workloads and cloud infrastructure.

The post Rad Security Raises $14 Million for AI, Cloud Security Platform appeared first on SecurityWeek.

OpenAI Bans ChatGPT Accounts Used by Chinese Group for Spy Tools

OpenAI has banned ChatGPT accounts used by Chinese threat actors, including ones leveraged for the development of spying tools.

The post OpenAI Bans ChatGPT Accounts Used by Chinese Group for Spy Tools appeared first on SecurityWeek.

Month: February 2025