Andrew Witty made the claims in a written testimony submitted before a House subcommittee hearing
Monthly Archives: May 2024
et-6.2.8-2.el8
FEDORA-EPEL-2024-f282573e05
Packages in this update:
et-6.2.8-2.el8
Update description:
Update to 6.2.8, fixing CVE-2022-48257 and CVE-2022-48258
1 in 5 US Ransomware Attacks Triggers Lawsuit
Comparitech found that 18% of ransomware incidents in the US led to a lawsuit in 2023, with 59% of completed lawsuits since 2018 proving successful
pypy-7.3.15-3.fc40
FEDORA-2024-612986fdfa
Packages in this update:
pypy-7.3.15-3.fc40
Update description:
Security fix for CVE-2023-5752 (in the bundled pip).
pypy-7.3.15-3.fc39
FEDORA-2024-dada06a500
Packages in this update:
pypy-7.3.15-3.fc39
Update description:
Security fix for CVE-2023-5752 (in the bundled pip).
pypy-7.3.15-3.fc38
FEDORA-2024-797928fed3
Packages in this update:
pypy-7.3.15-3.fc38
Update description:
Security fix for CVE-2023-5752 (in the bundled pip).
Microsoft PlayReady white-box cryptography weakness
Posted by Security Explorations on May 01
Hello All,
There is yet another attack possible against Protected Media Path
process beyond the one involving two global XOR keys [1]. The new
attack may also result in the extraction of a plaintext content key
value.
The attack has its origin in a white-box crypto [2] implementation.
More specifically, one can devise plaintext content key from white-box
crypto data structures of which goal is to make such a reconstruction
difficult / not…
Lawsuits and Company Devaluations Await For Breached Firms
New report from Netwrix reveals unplanned expenses impact half of breached firms, including a surge in lawsuits
AI Voice Scam
DBIR: Vulnerability Exploits Triple as Initial Access Point for Data Breaches
The growth of software supply chain attacks pushed vulnerability exploits to the third most used initial access method, Verizon found