Latest Cybernews
Surge In Open-Source Software Adoption Raises Security Concerns
The rapid increase in open-source software usage, with a 156% rise in malicious packages, highlights significant security challenges in the software supply chain, necessitating urgent measures for protection.
View full story…
Hybrid Password Attacks: A Growing Threat to Cybersecurity
Threat actors are increasingly using sophisticated hybrid password attacks that exploit weaknesses in password policies by combining various cracking techniques, necessitating a multi-layered security approach for organizations.
View full story…
CBP’s Redacted Documents Raise Concerns Over Migrant Data Privacy
The release of heavily redacted documents by US Customs and Border Protection regarding its border control app, CBP One, has ignited worries about the agency’s transparency and the handling of migrants’ personal data following a FOIA request by Access Now.
View full story…
Strengthening Cybersecurity Defenses Through Timely Updates and Advanced Authentication
Organizations can significantly mitigate cybersecurity risks by prioritizing timely software updates, managing access controls, and adopting advanced authentication methods.
View full story…
New Malware Campaign Targets Finance Sector Through GitHub Links
A new malware campaign is exploiting tax-themed phishing emails to deliver the Remcos Remote Access Trojan (RAT) to the finance and insurance sectors by leveraging GitHub links for malicious file distribution.
View full story…
Relyance AI Secures $32.1 Million in Series B Funding to Enhance Data Governance Platform
Relyance AI, a San Francisco-based data governance startup, has raised $32.1 million in Series B funding to improve its AI-powered platform for privacy and compliance amid increasing global regulations.
View full story…
2024 Global State of Authentication Survey Reveals Alarming Cybersecurity Concerns
The Yubico survey highlights significant cybersecurity threats from AI and phishing, with many individuals relying on insecure authentication methods and lacking awareness of secure practices.
View full story…
NHS England Issues Cyber Alert for Critical Veeam Backup Vulnerability
NHS England has raised a high-severity Cyber Alert regarding the CVE-2024-40711 vulnerability in Veeam Backup & Replication software, which is being actively exploited by multiple ransomware groups, allowing for unauthenticated remote code execution.
View full story…
GitLab Issues Critical Security Updates to Address Multiple Vulnerabilities
GitLab has released urgent security updates for its Community and Enterprise Editions to fix eight vulnerabilities, including a critical flaw (CVE-2024-9164) that allows unauthorized execution of CI/CD pipelines.
View full story…
Fidelity Investments Data Breach Affects 77,099 Customers
Fidelity Investments confirmed a data breach that exposed sensitive personal information of 77,099 customers, although their investment accounts and funds remained secure.
View full story…
Latest Cybernews
Critical Vulnerability Discovered in Mozilla Firefox
A critical security vulnerability, tracked as CVE-2024-9680, has been identified in Mozilla Firefox, allowing remote attackers to execute arbitrary code, with active exploitation reported in the wild.
View full story…
European Union Enacts Cyber Resilience Act to Strengthen Cybersecurity Standards
The European Union Council has adopted the Cyber Resilience Act, establishing stringent cybersecurity requirements for digital products, including Internet of Things devices, to combat rising cyber threats.
View full story…
OpenAI Disrupts Over 20 Cybercriminal Operations Misusing AI for Election Interference
OpenAI has thwarted more than 20 cybercriminal operations, primarily involving foreign actors from Russia, Iran, and China, who exploited its generative AI technologies for political influence and election-related misinformation.
View full story…