AI/MLSAP AI Core flaws show risks of training AI in shared environmentsLaura FrenchJuly 18, 2024Wiz researchers gained access to credentials and other secrets using a cross-tenant exploit.
Vulnerability ManagementWindows installer tagged with flaws that could elevate privilegesShaun NicholsJuly 18, 2024An unpatched vulnerability in the way Windows handles installer files could put systems at risk of attack.
Vulnerability ManagementVMware, Adobe bugs exploited in active attacks as Cisco warns of critical ‘10.0’ flawSteve ZurierJuly 18, 2024CISA added three bugs to the KEV catalog in all; Cisco gives flaw on Cisco Smart Software Manager On-Prem a 10 rating.
RansomwareQ2 2024 ransomware stats reflect shifting RaaS landscapeLaura FrenchJuly 17, 2024An attempted rebound by LockBit and rise of fresh groups like RansomHub led to a 20% increase in claimed victims.
Network SecurityMalware scammers gearing up for 2024 summer Olympics in ParisShaun NicholsJuly 17, 2024Cybercriminals are set to go for gold this summer as the Paris Olympics get set to kick off.
RansomwareFIN7 deploys custom EDR tool on numerous dark web forumsSteve ZurierJuly 17, 2024FIN7’s use of custom EDR tool “AvNeutrailizer” shows its continued innovation and technical prowess.
Network SecurityVulnerabilities exploited faster than ever, says CloudflareShaun NicholsJuly 17, 2024Researchers with Cloudflare say a newly disclosed vulnerability comes under attack every 22 minutes on average.
RansomwareNew HardBit ransomware variant increases stealth and persistenceLaura FrenchJuly 16, 2024HardBit 4.0 aims to prevent recovery through passphrase protection and packing with the Neshta virus.
IdentitySquarespace botch of Google handover leads to domain hijackShaun NicholsJuly 16, 2024A hiccup in the handover of former Google Domains has lead to a rash of site takeovers.
Network SecurityVoid Banshee group using patched zero-day to execute infostealerSteve ZurierJuly 16, 2024Security pros warn teams to patch the MHTML bug ASAP.