Read Time:4 Second
Lazarus Group exploited Google Chrome zero-day, infecting systems with Manuscrypt malware
Category Archives: News
Penn State Settles for $1.25M Over Cybersecurity Violations
Read Time:5 Second
Penn State will pay $1.25m for failing federal cybersecurity standards in DoD and NASA contracts
White House Issues AI National Security Memo
Read Time:7 Second
The National Security Memorandum on AI sets out actions for the federal government to ensure the safe, secure and trustworthy development of AI
Fortinet Confirms Exploitation of Critical FortiManager Zero-Day Vulnerability
Read Time:6 Second
This high-severity flaw, dubbed FortiJump by security researcher Kevin Beaumont, has been added to CISA’s KEV catalog
UK Government Introduces New Data Governance Legislation
Read Time:8 Second
The Data (Use and Access) Bill governs digital verification services and the use of personal data in public services, and will revamp the Information Commissioner’s Office
Cybersecurity Teams Largely Ignored in AI Policy Development
Read Time:6 Second
A new ISACA study has revealed that cybersecurity professionals are often overlooked in the development of AI policies
UK Government Urges Organizations to Get Cyber Essentials Certified
Read Time:7 Second
On the 10th anniversary since Cyber Essentials was introduced, the UK government has highlighted the impact the scheme has had in preventing attacks
Smashing Security podcast #390: When security firms get hacked, and your new North Korean remote worker
Read Time:20 Second
The SolarWinds have returned to haunt four cybersecurity companies who tried to hide their breaches and ended up with their trousers around their ankles, and North Korea succeeds in getting one of its IT workers hired… but what’s their plan?
All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by cybersecurity veterans Graham Cluley and Carole Theriault.
Are Automatic License Plate Scanners Constitutional?
Read Time:38 Second
An advocacy groups is filing a Fourth Amendment challenge against automatic license plate readers.
“The City of Norfolk, Virginia, has installed a network of cameras that make it functionally impossible for people to drive anywhere without having their movements tracked, photographed, and stored in an AI-assisted database that enables the warrantless surveillance of their every move. This civil rights lawsuit seeks to end this dragnet surveillance program,” the lawsuit notes. “In Norfolk, no one can escape the government’s 172 unblinking eyes,” it continues, referring to the 172 Flock cameras currently operational in Norfolk. The Fourth Amendment protects against unreasonable searches and seizures and has been ruled in many cases to protect against warrantless government surveillance, and the lawsuit specifically says Norfolk’s installation violates that.”
New Malware WarmCookie Targets Users with Malicious Links
Read Time:4 Second
WarmCookie malware, aka BadSpace, spreads via malspam, malvertising and enables persistent access