-
New Zero-Click iOS Exploit Deploys Israeli Spyware
PRIVACY PRIVACY Researchers say exploit is delivered via iCloud calendar invitation Read More
-
How Microsoft’s Shared Key authorization can be abused and how to fix it
PRIVACY PRIVACY When many of us moved our server and application needs to the cloud, we rejoiced that we no longer had to worry about the drudgery of patching. We didn’t have to monitor servers and their Patch Tuesday deployments; it was all in Microsoft’s hands. But as often occurs with cloud deployments, a solution…
-
Ethical Hackers Could Earn up to $20,000 Uncovering ChatGPT Vulnerabilities
PRIVACY PRIVACY Following criticisms around ChatGPT’ security and privacy practices, OpenAI has launched a bug bounty program to help identify vulnerabilities across its systems and services Read More
-
Microsoft Fixes Zero-Day Bug This Patch Tuesday
PRIVACY PRIVACY It is one of around 100 software flaws addressed this month Read More
-
Microsoft (& Apple) Patch Tuesday, April 2023 Edition
PRIVACY PRIVACY Microsoft today released software updates to plug 100 security holes in its Windows operating systems and other software, including a zero-day vulnerability that is already being used in active attacks. Not to be outdone, Apple has released a set of important updates addressing two zero-day vulnerabilities that are being used to attack iPhones,…
-
Cohesity aims an OpenAI-powered chatbot to secure your data sets
PRIVACY PRIVACY Generative AI is coming to both line-of-business data analysis as well as security, as Cohesity deepens its ties to Microsoft. Read More
-
What is a Botnet? And What Does It Have to Do with Protecting “Smart Home” Devices?
PRIVACY PRIVACY The pop-up toaster as we know it first hit the shelves in 1926, under the brand name “Toastmaster.” With a familiar springy *pop*, it has ejected toast just the way we like it for nearly a century. Given that its design was so simple and effective, it’s remained largely unchanged. Until now. Thanks…
-
Iranian APT group launches destructive attacks in hybrid Azure AD environments
PRIVACY PRIVACY Recent destructive attacks against organizations that masquerade as a ransomware operation called DarkBit are likely performed by an advanced persistent threat (APT) group that’s affiliated with the Iranian government. During some of these operations the attackers didn’t limit themselves to on-premises systems but jumped into victims’ Azure AD environments where they deleted assets…
-
Malicious Android Apps Sold For Up to $20,000 on Darknet
PRIVACY PRIVACY Like on legitimate forums, Kaspersky explained there are various darknet offers for these apps Read More
-
Apple Patches Two Zero-Days Exploited in the Wild
PRIVACY PRIVACY Vulnerabilities affect macOS Ventura 13.3.1 and iOS and iPadOS 16.4.1 devices Read More