StormBamboo Compromised An ISP To Deploy Malicious Updates
A sophisticated hacking group by the name of StormBamboo has successfully compromised an internet service provider (ISP) to launch a DNS poisoning attack, targeting organizations…
Month: August 2024
Major Glitch In Google Ads Exposes Competitor Data
A major reporting glitch in Google Ads has left some advertisers without access to critical performance data and had earlier exposed sensitive competitor information, sparking…
Security Affairs Malware Newsletter – Round 5
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Unplugging PlugX: Sinkholing the PlugX USB…
Week in review: VMware ESXi zero-day exploited, SMS Stealer malware targeting Android users
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Why a strong patch management strategy is essential for reducing…
Votiro introduces enhanced data privacy features and integrations
Votiro expanded the privacy toolsets and integrations within its DDR platform. New features include the ability to mask privacy data within documents in real-time, continuous…
RailTel And Cylus Boost Cybersecurity In Indian Railway
In a significant move to bolster cybersecurity in Indian Railways, RailTel has announced a strategic partnership with Cylus, a leading cybersecurity firm specializing in rail…
Automating C To Rust Code Conversion
In a groundbreaking move, the US Defense Advanced Research Projects Agency (DARPA) is embarking on an ambitious project to modernize programming practices. The new initiative,…
US sued TikTok and ByteDance for violating children’s privacy laws
US sued TikTok and ByteDance for violating children’s privacy laws Pierluigi Paganini August 03, 2024 The U.S. Department of Justice has sued TikTok and its…
Hackers breach ISP to poison software updates with malware
A Chinese hacking group tracked as StormBamboo has compromised an undisclosed internet service provider (ISP) to poison automatic software updates with malware. Also tracked as Evasive Panda,…
Linux kernel impacted by new SLUBStick cross-cache attack
A novel Linux Kernel cross-cache attack named SLUBStick has a 99% success in converting a limited heap vulnerability into an arbitrary memory read-and-write capability, letting the…
Internal Monologue Capture · Joseph Thacker
I can’t stop thinking about a new concept AI applications could benefit from. I’m calling it internal monologue capture. When Daniel Miessler and I were…
Security Risk Advisors Announces Launch of VECTR Enterprise Edition
Security Risk Advisors (SRA) announces the launch of VECTR Enterprise Edition, a premium version of its widely-used VECTR platform for purple teams and adversary management program reporting…