NEWS

AI/ML

Google’s AI-powered fuzzing tool discovers 26 new vulnerabilities

Laura FrenchNovember 21, 2024

LLM capabilities boosted OSS-Fuzz’s coverage and helped find a 20-year-old flaw in OpenSSL.

Double exposure of hacker working with laptop and flag of North Korea. Threat of cyber attack

Network Security

North Korean IT worker scam linked to Chinese front companies

Steve ZurierNovember 21, 2024

SentinelLabs reveals information on four previously unreported Chinese front companies taken down by the U.S. government Oct. 10.

Vulnerability Management

Ubuntu affected by 10-year-old flaws in needrestart package

Laura FrenchNovember 20, 2024

The five vulnerabilities could lead to local privilege escalation without user interaction.

Close up of female hands typing on laptop keyboard, working at home, sunset in background

Ransomware

Russian women stepping up for cybercrime outfits

Shaun NicholsNovember 20, 2024

Women are increasingly taking on top roles within Russian-speaking threat actor groups.

Cyber war attack on world globe, global computing security, protection from hacking

Data Security

FBI and CISA warn of continued cyberattacks on US telecoms

Steve ZurierNovember 20, 2024

China’s campaign against U.S. telecoms has been ongoing for years.

An "Emergency" Sign in front of a hospital in the early evening

Identity

Semperis HIP conference tries to diagnose healthcare cybersecurity

Paul WagenseilNovember 19, 2024

Identity protection in healthcare was a dominant theme at last week’s Semperis HIP conference, with many participants offering guidance on how to improve medical cybersecurity.

Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency, participates in a Women’s History Month discussion on March 22, 2022, in Washington. (Benjamin Applebaum/DHS)

Critical Infrastructure Security

CISA Dir. Jen Easterly to step down Jan. 20: Security community reacts

Laura FrenchNovember 19, 2024

Easterly has led the agency since July 2021 and was instrumental in driving the Secure by Design initiative.

Ransomware

Helldown ransomware evolves to target VMware systems via Linux

Steve ZurierNovember 19, 2024

Security pros say Helldown aims for maximum impact by targeting VMware systems.

Cybersecurity daily news

Red red team team: Threat actors hire pentesters to test out ransomware effectiveness

Shaun NicholsNovember 19, 2024

Threat actors are hiring freelance pentesters to improve the effectiveness of their ransomware attacks

Ransomware

Upstart SafePay ransomware group uses LockBit builder, claims 22 victims

Laura FrenchNovember 18, 2024

Huntress researchers describe two SafePay ransomware incidents resulting in file encryption and exfiltration.

NEWS

Google’s AI-powered fuzzing tool discovers 26 new vulnerabilities

North Korean IT worker scam linked to Chinese front companies

Ubuntu affected by 10-year-old flaws in needrestart package

Russian women stepping up for cybercrime outfits

FBI and CISA warn of continued cyberattacks on US telecoms

Semperis HIP conference tries to diagnose healthcare cybersecurity

CISA Dir. Jen Easterly to step down Jan. 20: Security community reacts

Helldown ransomware evolves to target VMware systems via Linux

Red red team team: Threat actors hire pentesters to test out ransomware effectiveness

Upstart SafePay ransomware group uses LockBit builder, claims 22 victims

Upcoming Webcasts

How Will NIST Standardized PQCs Impact Your Environment? Know Before You Go

Rooting Out Overlooked Risks in the Data and AI Supply Chain: Introducing a New Approach

Don’t Let Your Cloud Security Blind Spot Expose You to Disaster

Break Free from Legacy VDI: Elevate Security and Performance with Menlo Security & Google Cloud

From Zero-Day to 360-Degree Protection: How to Accelerate Attack Response for Stronger Third-Party Risk Management

Perspectives

Here’s what to know about Google Cloud mandating MFA by end of 2025

How to incentivize – not just mandate – MFA

KnowBe4 named as first member of CRC Trusted Partner Program, leading the way in security culture to mitigate ransomware

Cybersecurity News Articles | SC Media

NEWS

Google’s AI-powered fuzzing tool discovers 26 new vulnerabilities

North Korean IT worker scam linked to Chinese front companies

Ubuntu affected by 10-year-old flaws in needrestart package

Russian women stepping up for cybercrime outfits

FBI and CISA warn of continued cyberattacks on US telecoms

Semperis HIP conference tries to diagnose healthcare cybersecurity

CISA Dir. Jen Easterly to step down Jan. 20: Security community reacts

Helldown ransomware evolves to target VMware systems via Linux

Red red team team: Threat actors hire pentesters to test out ransomware effectiveness

Upstart SafePay ransomware group uses LockBit builder, claims 22 victims

Upcoming Webcasts

How Will NIST Standardized PQCs Impact Your Environment? Know Before You Go

Rooting Out Overlooked Risks in the Data and AI Supply Chain: Introducing a New Approach

Don’t Let Your Cloud Security Blind Spot Expose You to Disaster

Break Free from Legacy VDI: Elevate Security and Performance with Menlo Security & Google Cloud

From Zero-Day to 360-Degree Protection: How to Accelerate Attack Response for Stronger Third-Party Risk Management

Perspectives

Here’s what to know about Google Cloud mandating MFA by end of 2025

How to incentivize – not just mandate – MFA

KnowBe4 named as first member of CRC Trusted Partner Program, leading the way in security culture to mitigate ransomware