AI is Mostly Prompting
I’ve been actively building in AI since early 2023. I’ve put out the open-source framework called Fabric that augments humans using AI, and a new…
Month: May 2024
PostgreSQL Security Flaws Let Attackers Execute Code
Two vulnerabilities have been identified in pgAdmin of PostgreSQL, which are associated with cross-site scripting and multi-factor authentication bypass. pgAdmin is an open-source administration tool…
Linksys Router Flaw Let Attackers Perform Command Injection
Linksys routers were discovered with two vulnerabilities: CVE-2024-33788 and CVE-2024-33789. These vulnerabilities were associated with Command Injection on Linksys routers. The severity of these vulnerabilities…
Chinese APT31 State Hackers Targeted Six Australian MPs
Six Australian Members of the Parliament confirmed today that they were targeted by Chinese-state hackers APT31 in a brazen cyberattack whose aim was to gather…
Finland authorities warn of Android malware campaign targeting bank users
Finland authorities warn of Android malware campaign targeting bank users Pierluigi Paganini May 06, 2024 Finland’s Transport and Communications Agency (Traficom) warned about an ongoing…
Tinyproxy Flaw Let Attackers Execute Remote Code
A security flaw has been identified in Tinyproxy, a lightweight HTTP/HTTPS proxy daemon widely used in small network environments. The vulnerability, cataloged under CVE-2023-49606, allows…
KnowBe4 to acquire Egress Email Security
KnowBe4, a leading business platform renowned for its AI-driven security awareness training, has announced its acquisition of Egress, an email security firm, for an undisclosed…
High Society, New Alliance Linked To Cyber Army Of Russia
The newly formed alliance known as High Society has declared its affiliation with the notorious threat actor group, Cyber Army of Russia. This alliance has…
NVIDIA ChatRTX Windows Vulnerability Privilege Escalate
NVIDIA, a leading technology company, has recently released a security update regarding its Windows ChatRTX application. The update reveals the presence of several vulnerabilities that…
Dealing with Stolen Data in Ransomware Attacks: A Comprehensive Guide
In today’s digital age, ransomware attacks have become increasingly prevalent, posing significant threats to individuals and organizations alike. These malicious attacks encrypt valuable data, rendering…
How to prepare for the CISSP exam: Tips from industry leaders
The Certified Information Systems Security Professional (CISSP) is the most widely recognized certification in the information security industry. CISSP certifies that an information security professional…
HackerOne Invests in Leaders with New Development Program
The 14-week program focuses on developing the skills necessary to lead with self-awareness, communicate with empathy, inspire transformational work among teams, and successfully lead in…