The DeepSeek controversy: Authorities ask where does the data come from and how safe is it?
The sudden rise of DeepSeek has raised concerns and questions, especially about the origin and destination of the training data, as well as the security…
Author: Cybernoz
Lightning AI Studio Vulnerability Allowed RCE via Hidden URL Parameter
Jan 30, 2025Ravie LakshmananVulnerability / Cloud Security Cybersecurity researchers have disclosed a critical security flaw in the Lightning AI Studio development platform that, if successfully…
Interview: Volvo’s engineering lead discusses tech stacks
Software was one the five key areas of change Volvo Cars unveiled in its Capital Days presentation in November 2024. The company’s plan for navigating…
Police seizes Cracked and Nulled hacking forum servers, arrests suspects
Europol and German law enforcement confirmed the arrest of two suspects and the seizure of 17 servers in Operation Talent, which took down Cracked and…
CISA Releases Seven ICS Advisories to Strengthen Cybersecurity Posture
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued seven Industrial Control Systems (ICS) advisories, highlighting critical vulnerabilities in systems vital to industrial and…
Authorities Seize Domains of Popular Hacking Forums in Major Cybercrime Crackdown
Jan 30, 2025Ravie LakshmananOnline Fraud / Cybercrime An international law enforcement operation has dismantled the domains associated with various online platforms linked to cybercrime such…
PHP package Voyager flaws expose to one-click RCE exploits
PHP package Voyager flaws expose to one-click RCE exploits Pierluigi Paganini January 30, 2025 The open-source PHP package Voyager is affected by three vulnerabilities that could be exploited…
Bridging The Manufacturing Security “Air Gap”
In the world of manufacturing, one security measure has stood out above all others: the “air gap.” This technique, which isolates technology from the outside…
Lazarus Group Drop Malicious NPM Packages in Developers Systems Remotely
In a recent discovery by Socket researchers, a malicious npm package named postcss-optimizer has been identified as an operation spearheaded by the North Korean state-sponsored…
Time Bandit ChatGPT jailbreak bypasses safeguards on sensitive topics
A ChatGPT jailbreak flaw, dubbed “Time Bandit,” allows you to bypass OpenAI’s safety guidelines when asking for detailed instructions on sensitive topics, including the creation…
TeamViewer Clients Vulnerability Leads to Privilege Escalation
TeamViewer, a widely used remote access software, has announced a critical vulnerability in its Windows clients. The company disclosed on January 28, 2025, that its…
Over 1 Million Log Lines, Secret Keys Leaked
Jan 30, 2025Ravie LakshmananArtificial Intelligence / Data Privacy Buzzy Chinese artificial intelligence (AI) startup DeepSeek, which has had a meteoric rise in popularity in recent…