Recent Security News
-
Webinar: The Art of Privilege Escalation – How Hackers Become Admins
January 17, 2024 at 06:39AM The upcoming webinar, “The Art of Privilege Escalation – How Hackers Become Admins,” presented by Joseph Carson, aims to equip IT security experts with the knowledge, tools, and strategies to counter cyber threats. Attendees will delve into the mind of cyber attackers, learn to detect privilege escalation attempts, and develop…
-
Here’s How ChatGPT Maker OpenAI Plans to Deter Election Misinformation in 2024
January 17, 2024 at 06:30AM OpenAI has outlined safeguards against election misinformation for its generative AI tools that can create compelling fake images and texts. This includes banning technology use for misleading purposes, digital watermarking of AI images, and ensuring users receive accurate voting information. OpenAI’s CEO expresses vigilance and anxiety about preventing misuse during…
-
Oracle Patches 200 Vulnerabilities With January 2024 CPU
January 17, 2024 at 06:30AM Oracle issued 389 new security patches in its January 2024 Critical Patch Update, addressing numerous critical-severity vulnerabilities. The update covers over 200 unique CVEs, with emphasis on Financial Services Applications, Communications, and MySQL. Oracle urges prompt patch application, warning of potential in-the-wild exploitation. The company plans three more Critical Patch…
-
New iShutdown Method Exposes Hidden Spyware Like Pegasus on Your iPhone
January 17, 2024 at 06:03AM Cybersecurity researchers have developed a “lightweight method” called iShutdown to detect spyware on Apple iOS devices, including threats like NSO Group’s Pegasus and QuaDream’s Reign. The method involves analyzing the “Shutdown.log” file, which records reboot events and environment characteristics, and has been found to be a reliable forensic artifact for…
-
Citrix Warns NetScaler ADC Customers of New Zero-Day Exploitation
January 17, 2024 at 05:06AM Citrix published a security bulletin revealing that two zero-day vulnerabilities in NetScaler ADC and Gateway products are being exploited. CVE-2023-6548 allows remote execution of code, and CVE-2023-6549 enables DoS attacks. Citrix advises immediate patch installation. The vulnerabilities may be exploited in targeted attacks but are not expected to have significant…