Recent Security News
-
So, are we going to talk about how GitHub is an absolute boon for malware, or nah?
January 12, 2024 at 08:22AM GitHub’s popularity presents challenges and opportunities. Its appeal to developers worldwide makes it difficult to block, benefitting dissidents but posing security risks. Despite being relatively immune to Chinese censorship, it is abused for malware distribution. GitHub’s advantages and disadvantages make it a complex platform for both legitimate and malicious activities.…
-
Applying the Tyson Principle to Cybersecurity: Why Attack Simulation is Key to Avoiding a KO
January 12, 2024 at 08:11AM The article emphasizes the necessity of a proactive cybersecurity approach and the role of Breach and Attack Simulation (BAS) in strengthening defenses. It highlights the gap between perceived and actual security, the mechanics of BAS, and steps to integrate BAS into an organization’s cyber strategy. The piece is authored by…
-
Data regulator fines HelloFresh £140k for sending 80M+ spams
January 12, 2024 at 06:32AM HelloFresh faces a £140,000 fine from Britain’s data privacy watchdog for sending 79 million spam emails and 1 million texts in seven months. The company misled customers about opt-in statements for marketing messages, failing to provide clear information or an easy opt-out process. The ICO issued the fine for breaching…
-
Apple Patches Keystroke Injection Vulnerability in Magic Keyboard
January 12, 2024 at 06:15AM Apple announced a firmware update for the Magic Keyboard to fix a Bluetooth vulnerability disclosed by SkySafe engineer. The vulnerability could allow attackers to inject keystrokes without authentication. The update, version 2.0.6, is being rolled out and reportedly mitigates the attack. Users can check for the update in their system…