Recent Security News
-
Europe’s data protection laws cut data storage by making information-wrangling pricier
February 21, 2024 at 02:32AM Europe’s GDPR has reduced data storage and processing for European firms due to increased data management costs. The NBER paper, “Data, Privacy Laws and Firm Production: Evidence from the GDPR,” by economists Mert Demire, Diego J Jiménez Hernández, Dean Li, and Sida Peng, examines the GDPR’s impact on costs, revealing…
-
AI-Generated Patches Could Ease Developer, Operations Workload
February 21, 2024 at 01:40AM Large language models (LLMs) show potential in speeding up software development by detecting and addressing common bugs. Google’s Gemini LLM can fix 15% of bugs found using dynamic application security testing (DAST), helping prioritize vulnerabilities often overlooked by developers. AI-powered bug-fixing systems are crucial as machine learning models produce more…
-
Russian Hackers Target Ukraine with Disinformation and Credential-Harvesting Attacks
February 21, 2024 at 01:15AM A recently discovered influence operation targeted Ukraine, using spam emails to spread war-related disinformation. Slovak cybersecurity company ESET linked the activity to Russia-aligned threat actors, uncovering spear-phishing campaigns and disinformation emails with PDF attachments. The campaign, named Operation Texonto, sent messages to Ukrainian government, energy companies, and individuals, while also…
-
VMware Alert: Uninstall EAP Now – Critical Flaw Puts Active Directory at Risk
February 21, 2024 at 01:15AM VMware has reported critical security flaws in the Enhanced Authentication Plugin (EAP), urging users to uninstall it. The vulnerability enables a malicious actor to manipulate service tickets and hijack sessions. Additionally, SonarSource disclosed cross-site scripting flaws in Joomla!. Salesforce’s Apex programming language also faces high-severity vulnerabilities. Users are advised to…
-
Ransomware Declines as InfoStealers and AI Threats Gain Ground: IBM X-Force
February 21, 2024 at 12:21AM The IBM X-Force report indicates a decrease in ransomware with a rise in infostealing, cloud service attacks, and critical infrastructure targeting. It details evolving criminal tactics, geopolitical effects, and the looming AI threat. The report also emphasizes the need for cybersecurity preparedness, particularly in securing AI/ML open source software. The…