Recent Security News
-
Free Decryptor Released for Black Basta and Babuk’s Tortilla Ransomware Victims
January 10, 2024 at 06:34AM Cisco Talos released a decryptor for the Tortilla variant of Babuk ransomware, enabling victims to regain file access. The cybersecurity firm shared intelligence that led to the arrest of the threat actor. Avast also obtained the encryption key, updating its decryptor for all Tortilla victims. Meanwhile, Security Research Labs unveiled…
-
FTC Bans Outlogic (X-Mode) From Selling Sensitive Location Data
January 10, 2024 at 04:30AM The U.S. FTC prohibited data broker Outlogic from sharing sensitive location data with third-parties due to privacy violations, requiring data destruction and a comprehensive privacy program. The FTC accused Outlogic of inadequate safeguards and transparency, prompting a settlement and Senator Wyden’s praise. Outlogic disagreed with the implications and the need…
-
Microsoft’s January 2024 Windows Update Patches 48 New Vulnerabilities
January 10, 2024 at 01:06AM In January 2024, Microsoft addressed 48 security flaws in its software, with 2 rated Critical and 46 Important. No evidence indicates active attacks, marking the second consecutive Patch Tuesday with no zero-days. This includes fixes for vulnerabilities in the Chromium-based Edge browser. Other vendors have also released security updates to…
-
CISA Flags 6 Vulnerabilities – Apple, Apache, Adobe , D-Link, Joomla Under Attack
January 10, 2024 at 12:06AM The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added six actively exploited security flaws to its catalog, including a high-severity vulnerability in Apache Superset. Details of the issue were first reported in April 2023. CISA recommends federal agencies to apply fixes for these bugs by January 29, 2024, to…