Recent Security News
-
Webinar Today: CISO Strategies for Boardroom Success
March 13, 2024 at 08:33AM Join SecurityWeek and Gutsy for the webinar “From Protector to Influencer: CISO Strategies for Boardroom Success” on March 13th at 1PM ET. Learn how to articulate security strategies, deploy governance, align objectives with business goals, and showcase ROI. Register to attend live or receive the recording on demand. The webinar…
-
Stanford University failed to detect ransomware intruders for 4 months
March 13, 2024 at 08:08AM Stanford University confirmed a ransomware incident, admitting to detecting it four months after the breach. The attack targeting the Department of Public Safety exposed 27,000 individuals’ information. The university notified affected individuals and offered credit monitoring and security enhancement. Perpetrators, Akira, demand, but Stanford refused to pay. Akira has targeted…
-
Critical ChatGPT Plugin Vulnerabilities Expose Sensitive Data
March 13, 2024 at 08:07AM Security researchers at Salt Labs discovered three critical vulnerabilities in the ChatGPT extension, potentially exposing users’ accounts and services to unauthorized access. The first vulnerability occurs during plugin installation, allowing malicious code approval. The second vulnerability lacks proper user authentication, enabling account takeovers. The third vulnerability allows for OAuth redirection…
-
LockBit ransomware affiliate gets four years in jail, to pay $860k
March 13, 2024 at 07:46AM Russian-Canadian cybercriminal Mikhail Vasiliev sentenced to 4 years in prison by Ontario court for involvement in LockBit ransomware gang, with restitution of $860,000 to Canadian victims and potential extradition to the U.S. LockBit, a ransomware-as-a-service operation, has faced disruption by law enforcement, but despite relaunching, analysis suggests its activities are…
-
Join Our Webinar on Protecting Human and Non-Human Identities in SaaS Platforms
March 13, 2024 at 07:03AM Cybercriminals are increasingly targeting identities within SaaS applications, including human and non-human accounts, leading to data breaches and financial losses. While measures like multi-factor authentication protect human identities, safeguarding non-human identities requires advanced tactics like monitoring tools and automated security checks. Join the webinar to learn about defending SaaS environments…