Schneier on Security

JANUARY 24, 2024

New research into poisoning AI models : The researchers first trained the AI models using supervised learning and then used additional “safety training” methods, including more supervised learning, reinforcement learning, and adversarial training. After this, they checked if the AI still had hidden behaviors. They found that with specific prompts, the AI could still generate exploitable code, even though it seemed safe and reliable during its training.

Artificial Intelligence 299

Artificial Intelligence 299

Tech Republic Security

JANUARY 24, 2024

See the National Cyber Security Centre's predictions for generative AI for cyber attack and defense through 2025.

Cyber Attacks 199

Cyber Attacks Ransomware Artificial Intelligence Social Engineering 199

Bleeping Computer

JANUARY 24, 2024

Security researchers hacked a Tesla Modem and collected awards of $722,500 on the first day of Pwn2Own Automotive 2024 for three bug collisions and 24 unique zero-day exploits.

Hacking 139

Hacking 139

Tech Republic Security

JANUARY 24, 2024

The NCSC wants volunteers from the U.K.’s public and private sectors to join its new cybersecurity community.

Cyber threats 174

Cyber threats Cybersecurity 174

Advertisement

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

Software

Security Affairs

JANUARY 24, 2024

Thousands of GitLab servers are vulnerable to zero-click account takeover attacks exploiting the flaw CVE-2023-7028. GitLab has recently released security updates to address two critical vulnerabilities impacting both the Community and Enterprise Edition. The most critical vulnerability, tracked as CVE-2023-7028 (CVSS score 10), is an account takeover via Password Reset.

Accountability 143

Accountability Passwords Internet Internet 143

Bleeping Computer

JANUARY 24, 2024

Google Pixel smartphone owners report problems after installing the January 2024 Google Play system update, being unable to access their devices internal storage, open the camera, take screenshots, or even open apps. [.

Mobile 134

Mobile 134

Malwarebytes

JANUARY 24, 2024

Apple has released new security updates for several products, including a patch for a zero-day vulnerability that could impact iPhones, iPad, Macs, and Apple TVs. Apple says it’s aware of a report that the bug may have been exploited already. Further details about the nature of the vulnerability were not disclosed to give users enough time to install the updates.

Engineering 128

Engineering Cybersecurity Risk 128

Security Affairs

JANUARY 24, 2024

Researchers released PoC exploit code for a recently disclosed critical authentication bypass flaw in Fortra’s GoAnywhere MFT (Managed File Transfer). Researchers with cybersecurity firm Horizon3’s Attack Team published technical details of the recently disclosed vulnerability CVE-2024-0204 impacting Fortra GoAnywhere MFT. The security experts also published a proof-of-concept (PoC) exploit that allows the creation of new admin users on vulnerable instances exposed online. “

Authentication 135

Authentication Hacking Engineering Encryption 135

Security Boulevard

JANUARY 24, 2024

A ransomware attack last week hit the North American operations of massive water and wastewater systems operator Veolia, illustrating the ongoing threat to the critical infrastructure sector by cybercrime groups. Veolia officials said in a note this week that the attack affected software and systems in their North America Municipal Water division. They also wrote.

Ransomware 124

Ransomware Cybercrime Software IoT 124

Bleeping Computer

JANUARY 24, 2024

Hewlett Packard Enterprise (HPE) disclosed today that suspected Russian hackers known as Midnight Blizzard gained access to the company's Microsoft Office 365 email environment to steal data from its cybersecurity team and other departments. [.

Accountability 123

Accountability Cybersecurity 123

Advertisement

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

Security Boulevard

JANUARY 24, 2024

Protect AI's Guardian gateway enforces security policies to prevent malicious code from executing within an artificial intelligence (AI) model. The post Protect AI Unveils Gateway to Secure AI Models appeared first on Security Boulevard.

Artificial Intelligence 124

Artificial Intelligence Malware Cybersecurity Network Security 124

Security Affairs

JANUARY 24, 2024

A ransomware attack against the Finnish IT services provider Tietoevry disrupted the services of some Swedish government agencies and shops. The online services of multiple Swedish government agencies, universities, and commercial activities were disrupted by an Akira ransomware attack that hit the Finnish IT services and enterprise cloud hosting Tietoevry.

Ransomware 138

Ransomware VPN Government Retail 138

Penetration Testing

JANUARY 24, 2024

A critical directory traversal vulnerability has been found in a popular WordPress plugin. The affected plugin, Photo Gallery by 10Web – Mobile-Friendly Image Gallery, has over 200,000 active installations. Photo Gallery is the leading... The post Over 200,000 Sites at Risk: Directory Traversal CVE-2024-0221 Vulnerability Hits Photo Gallery Plugin appeared first on Penetration Testing.

Penetration Testing 131

Penetration Testing Risk Mobile 131

Security Affairs

JANUARY 24, 2024

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Atlassian Confluence Data Center and Server Template Injection bug to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added an Atlassian Confluence Data Center and Server Template Injection bug, tracked as CVE-2023-22527 , to its Known Exploited Vulnerabilities (KEV) catalog.

Cybersecurity 135

Cybersecurity Risk Information Security Hacking 135

Advertisement

Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.

Software

Graham Cluley

JANUARY 24, 2024

The US Securities & Exchange Comission (SEC) has confirmed that hackers managed to seize control of a phone number associated with its Twitter account, and used it to post an unauthorised message. Read more in my article on the Hot for Security blog.

Hacking 119

Hacking Accountability 119

Malwarebytes

JANUARY 24, 2024

Stalkers can use all kinds of apps, gadgets, devices, and phones to spy on their targets, which are often their ex-partners. Unfortunately, while they no doubt have many positive uses, smart home devices give stalkers an array of tools to keep an eye on their targets. If you are the partner that stays in the house you shared together, you need to make sure that you lock out your ex-partner.

Identity Theft 123

Identity Theft Accountability Passwords Media 123

We Live Security

JANUARY 24, 2024

ESET researchers have discovered NSPX30, a sophisticated implant used by a new China-aligned APT group we have named Blackwood

135

135

Bleeping Computer

JANUARY 24, 2024

Over 5,300 internet-exposed GitLab instances are vulnerable to CVE-2023-7028, a zero-click account takeover flaw GitLab warned about earlier this month. [.

Accountability 119

Accountability Internet Internet 119

Advertisement

Tech leaders today are facing shrinking budgets and investment concerns. This whitepaper provides insights from over 1,000 tech leaders on how to stay secure and attract top cybersecurity talent, all while doing more with less. Download today to learn more!

Cybersecurity

Penetration Testing

JANUARY 24, 2024

In the shadowy corners of the digital world, where the battle between cybersecurity defenders and attackers unfolds with relentless intensity, a new adversary has emerged, wielding the sophisticated tool of deception and evasion: LODEINFO... The post APT10’s Latest Weapon: Unveiling the LODEINFO Malware Menace appeared first on Penetration Testing.

Penetration Testing 120

Penetration Testing Malware Cybersecurity 120

Bleeping Computer

JANUARY 24, 2024

Microsoft says admins are seeing 0x80073cf2 errors when using the System Preparation (Sysprep) tool to validate Windows installations for deployment after installing recent Windows 10 updates. [.

110

110

eSecurity Planet

JANUARY 24, 2024

Firewall rules are preconfigured, logical computing controls that give a firewall instructions for permitting and blocking network traffic. They help IT and security teams manage the traffic that flows to and from their private network. This includes protecting data from internet threats, but it also means restricting unauthorized traffic attempting to leave your enterprise network.

Firewall 109

Firewall Network Security Financial Services Internet 109

Penetration Testing

JANUARY 24, 2024

Arctic Wolf Labs has recently shed light on a sophisticated Go-based malware downloader, dubbed “CherryLoader,” which uses the legitimate CherryTree note-taking application to trick the victims. At first glance, CherryLoader deceives with a veneer... The post Arctic Wolf Labs Exposes CherryLoader: A New Go-based Malware appeared first on Penetration Testing.

Penetration Testing 118

Penetration Testing Malware 118

Advertisement

Explore how enterprises can enhance developer productivity and onboarding by adopting self-hosted Cloud Development Environments (CDEs). This whitepaper highlights the simplicity and flexibility of cloud-based development over traditional setups, demonstrating how large teams can leverage economies of scale to boost efficiency and developer satisfaction.

Bleeping Computer

JANUARY 24, 2024

Microsoft released the January 2024 preview update for Windows 11 versions 22H2 and 23H2, which comes with Bluetooth audio bug fixes and addresses 24 known issues. [.

111

111

Penetration Testing

JANUARY 24, 2024

Jenkins – a popular open-source automation server software – published an advisory on Wednesday concerning a critical vulnerability that could result in remote code execution. Tracked as CVE-2024-23897, a critical vulnerability within Jenkins’ built-in... The post CVE-2024-23897 (CVSS 9.8): Critical Jenkins Security Vulnerability, RCE Possible appeared first on Penetration Testing.

Penetration Testing 111

Penetration Testing Software 111

Bleeping Computer

JANUARY 24, 2024

The United Kingdom's National Cyber Security Centre (NCSC) warns that artificial intelligence (AI) tools will have an adverse near-term impact on cybersecurity, helping escalate the threat of ransomware. [.

Artificial Intelligence 105

Artificial Intelligence Ransomware Cybersecurity 105

Penetration Testing

JANUARY 24, 2024

The maintainers of the Apache Superset open-source data visualization software have released fixes to fix a critical vulnerability that could lead to stored cross-site scripting attacks. Dubbed CVE-2023-49657, this stored cross-site scripting (XSS) vulnerability has... The post CVE-2023-49657: Apache Superset Hit by High-Risk Stored XSS Vulnerability appeared first on Penetration Testing.

Penetration Testing 112

Penetration Testing Risk Software 112

Advertisement

IT leaders are experiencing rapid evolution in AI amid sustained investment uncertainty. As AI evolves, enhanced cybersecurity and hiring challenges grow. This whitepaper offers real strategies to manage risks and position your organization for success.

Cybersecurity

Security Boulevard

JANUARY 24, 2024

This article is part of a series where we look at a recent NSA/CISA Joint Cybersecurity Advisory on the top cybersecurity issues identified during red/blue team exercises operated by these organizations. In this article, you will find a more in-depth look at the specific issue, with real-world scenarios where it is applicable, as well as […] The post Improper Separation of User/Administrator Privilege in Cybersecurity appeared first on TuxCare.

Cybersecurity 103

Cybersecurity 103

Penetration Testing

JANUARY 24, 2024

Maldev Academy – RemoteTLSCallbackInjection This method utilizes TLS callbacks to execute a payload without spawning any threads in a remote process. This method is inspired by Threadless Injection as RemoteTLSCallbackInjection does not invoke any API calls... The post RemoteTLSCallbackInjection: execute a payload without spawning any threads in a remote process appeared first on Penetration Testing.

Penetration Testing 111

Penetration Testing 111

SecureWorld News

JANUARY 24, 2024

On January 9, during a period of heightened anticipation surrounding the potential approval of Bitcoin exchange-traded funds (ETFs), an unauthorized post appeared on the SEC's X account claiming the approval had been granted. This triggered a surge in Bitcoin's price before the SEC quickly debunked the post and attributed it to a hack. The U.S. Securities and Exchange Commission (SEC) provided an update on the hack of its official account on X (formerly Twitter), revealing that the attack levera

Accountability 99

Accountability Hacking Government Mobile 99

The Hacker News

JANUARY 24, 2024

Cybersecurity researchers have discovered a loophole impacting Google Kubernetes Engine (GKE) that could be potentially exploited by threat actors with a Google account to take control of a Kubernetes cluster. The critical shortcoming has been codenamed Sys:All by cloud security firm Orca. As many as 250,000 active GKE clusters in the wild are estimated to be susceptible to the attack vector.

Accountability 104

Accountability Engineering Cybersecurity 104

Advertisement

Leverage the Cloud Development Environment Maturity Model to elevate your software development practices with scalable, secure cloud-based workspaces. This model offers a structured approach to modernizing development, aligning technology, developer experience, security, and workflows. By implementing Cloud Development Environments (CDEs), teams can boost efficiency, improve security, and streamline operations through centralized governance.

Government