September 2024 - Page 5 of 67 - Cyber Security News

Ireland’s DPC Hits Meta with €91 Million Penalty for GDPR Violation

Ireland's Data Protection Commission fines Meta Platforms €91 million for mishandling user passwords and GDPR violations Read More

September 27, 2024

News

US Sanctions Crypto Exchanges for Facilitating Russian Cybercrime

The US has sanctioned Cryptex, PM2BTC and a Russian national for processing hundreds of millions of dollars derived from cybercrime Read More

September 27, 2024

News

NIST Recommends Some Common-Sense Password Rules

NIST’s second draft of its “SP 800-63-4“—its digital identify guidelines—finally contains some really good rules about passwords: The following requirements apply to passwords: lVerifiers and...

September 27, 2024

News

Man Arrested Over UK Railway Station Wi-Fi Hack

The suspect is an employee of Global Reach Technology, which provides some Wi-Fi services to Network Rail Read More

September 27, 2024

News

Russian Hackers Target Ukrainian Servicemen via Messaging Apps

Russian cyber-attacks on Ukrainian servicemen underscore the escalating use of digital warfare tactics in the ongoing conflict Read More

September 27, 2024

Advisories

aws-2020-12.1.fc39

FEDORA-2024-d940f25a53 Packages in this update: aws-2020-12.1.fc39 Update description: CVE-2024-41708: Ada Web Server did not use a cryptographically secure pseudorandom number generator. AWS.Utils.Random and AWS.Utils.Random_String used...

September 27, 2024

Advisories

aws-2020-16.1.fc40

FEDORA-2024-63f98f8c60 Packages in this update: aws-2020-16.1.fc40 Update description: CVE-2024-41708: Ada Web Server did not use a cryptographically secure pseudorandom number generator. AWS.Utils.Random and AWS.Utils.Random_String used...

September 27, 2024

Advisories

Ivanti Virtual Traffic Manager (vTM ) Authentication Bypass Vulnerability (CVE-2024-7593)

What is the Vulnerability?Ivanti Virtual Traffic Manager (vTM), a software application used to manage and optimize the delivery of applications across networks is affected by...

September 27, 2024

Advisories

ZDI-24-1310: Lenovo Service Bridge Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Lenovo Service Bridge. User interaction is required to exploit this vulnerability in...

September 27, 2024

Advisories

DSA-5776-1 tryton-server – security update

Albert Cervera discovered two missing authorisation checks in the Tryton application platform. https://security-tracker.debian.org/tracker/DSA-5776-1 Read More

September 27, 2024

Sitting Ducks DNS Attacks Put Global Domains at Risk

Microsoft Power Pages Misconfiguration Leads to Data Exposure

ShrinkLocker ransomware: what you need to know

Massive Telecom Hack Exposes US Officials to Chinese Espionage

IT specialist Jack Teixeira jailed for 15 years after leaking classified military documents on Discord

New iOS Security Feature Makes It Harder for Police to Unlock Seized Phones

API Security in Peril as 83% of Firms Suffer Incidents

Bank of England U-turns on Vulnerability Disclosure Rules

LevelBlue Cybersecurity Awareness Month Recap

Month: September 2024

Ireland’s DPC Hits Meta with €91 Million Penalty for GDPR Violation

US Sanctions Crypto Exchanges for Facilitating Russian Cybercrime

NIST Recommends Some Common-Sense Password Rules

Man Arrested Over UK Railway Station Wi-Fi Hack

Russian Hackers Target Ukrainian Servicemen via Messaging Apps

aws-2020-12.1.fc39

aws-2020-16.1.fc40

Ivanti Virtual Traffic Manager (vTM ) Authentication Bypass Vulnerability (CVE-2024-7593)

ZDI-24-1310: Lenovo Service Bridge Command Injection Remote Code Execution Vulnerability

DSA-5776-1 tryton-server – security update