American Airlines pilot union hit by ransomware attack
Allied Pilots Association (APA), a labor union representing 15,000 American Airlines pilots, disclosed a ransomware attack that hit its systems...
News
Google Play adds security audit badges for Android VPN apps
Google Play, Android's official app store, is now tagging VPN apps with an 'independent security reviews' badge if they conducted...
Forrester: GenAI Will Lead to Breaches and Fines in 2024
Rampant generative AI (GenAI) use next year will lead to some major data breaches and fines for application developers using the...
Russian Security Services Arrest Suspected Ukrainian Hackers
Russia’s feared security service the FSB has detained two men suspected of launching cyber-attacks against domestic IT assets in support...
AI Safety Summit: OWASP Urges Governments to Agree on AI Security Standards
Top-level discussions on security and ethical risks AI-powered tools pose are no longer enough to mitigate the dangers posed by...
UK Banks Warn Quantum Will Imperil Entire Payment System
The UK finance industry has warned that quantum computing could unravel the security used to protect the country’s entire payment...
Israeli Entities Under Attack By MuddyWater’s Advanced Tactics
A new social engineering campaign conducted by the “MuddyWater” group has been observed targeting two Israeli entities with tactics, techniques and...
Spy Module Discovered in WhatsApp Mods
Users seeking additional features in mobile apps have been increasingly turning to third-party developers who offer mods that often come...
The People Hacker: AI a Game-Changer in Social Engineering Attacks
Cybercriminals are using artificial intelligence (AI) to launch more sophisticated social engineering attacks, and experts are warning that it is...
AI Safety Summit: Biden-Harris Administration Launches US AI Safety Institute
The US Department of Commerce has created a new government body to lead the US government’s efforts on AI safety...
UK AI Safety Institute: A Blueprint for the Future of AI?
The UK Frontier AI Taskforce, a government-funded initiative launched in April 2023 as the Foundation Model Taskforce, is evolving to...
Atlassian Finds Public Exploit for Critical Bug
Software vendor Atlassian has discovered “publicly posted critical information” about a recently published critical vulnerability, increasing the likelihood it will...
Microsoft Takes on Cyber-Threats with New Secure Future Initiative
Microsoft has announced a major new cybersecurity initiative designed to help the company better respond to the increasing speed, scale...
Healthcare Data Breaches Impact 88 Million Americans
Threat actors have compromised sensitive health data on tens of millions of US patients so far this year, according to...
US-CERT Vulnerability Summary for the Week of October 23, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info projectworlds_pvt._limited -- online_art_gallery Online Art Gallery v1.0 is vulnerable to multiple...
Predictive AI in Cybersecurity: Outcomes Demonstrate All AI is Not Created Equally
Here is what matters most when it comes to artificial intelligence (AI) in cybersecurity: Outcomes. As the threat landscape evolves...
Kinsing Actors Exploiting Recent Linux Flaw to Breach Cloud Environments
The threat actors linked to Kinsing have been observed attempting to exploit the recently disclosed Linux privilege escalation flaw called...
CanesSpy Spyware Discovered in Modified WhatsApp Versions
Cybersecurity researchers have unearthed a number of WhatsApp mods for Android that come fitted with a spyware module dubbed CanesSpy....
NodeStealer Malware Hijacking Facebook Business Accounts for Malicious Ads
Compromised Facebook business accounts are being used to run bogus ads that employ "revealing photos of young women" as lures...
48 Malicious npm Packages Found Deploying Reverse Shells on Developer Systems
A new set of 48 malicious npm packages have been discovered in the npm repository with capabilities to deploy a...
Cloudflare Dashboard and APIs down after data center power outage
An ongoing Cloudflare outage has taken down many of its products, including the company's dashboard and related application programming interfaces (APIs) customers...
Okta hit by third-party data breach exposing employee information
Okta is warning nearly 5,000 current and former employees that their personal information was exposed after a third-party vendor was...
Your end-users are reusing passwords – that’s a big problem
Password reuse is a difficult vulnerability for IT teams to get full visibility over. The danger is often hidden until...
Boeing confirms cyberattack amid LockBit ransomware claims
Aerospace giant Boeing is investigating a cyberattack that impacted its parts and distribution business after the LockBit ransomware gang claimed...
