Recent Security News
-
Google Adds Passkey Support to New Titan Security Key
November 16, 2023 at 01:15PM Google has released updated USB-A and USB-C models of its Titan security key, which now supports passkeys. These keys are secure authentication devices that can store over 250 unique passkeys and work with various applications. Google aims to replace passwords with passkeys and plans to distribute 100,000 free security keys…
-
‘Randstorm’ Bug: Millions of Crypto Wallets Open to Theft
November 16, 2023 at 12:57PM Researchers at Unciphered have discovered a vulnerability in cryptocurrency wallets generated between 2011 and 2015, which allows threat actors to use brute-force methods to recover passwords. The vulnerability is related to an outdated randomization function in BitcoinJS. Millions of wallets with potentially hundreds of millions of dollars are at risk.…
-
Unpatched Critical Vulnerabilities Open AI Models to Takeover
November 16, 2023 at 12:49PM Researchers have discovered critical vulnerabilities in the infrastructure used for AI models, putting companies at risk. The affected platforms include Ray, MLflow, ModelDB, and H20 version 3. These vulnerabilities could potentially give unauthorized access to AI models and the rest of the network. Protect AI disclosed the results and informed…
-
APTs Swarm Zimbra Zero-Day to Steal Government Info Worldwide
November 16, 2023 at 11:52AM Four separate cyberattack groups have exploited a former zero-day vulnerability in the Zimbra Collaboration Suite (ZCS) to steal email data, user credentials, and authentication tokens from government organizations worldwide. The bug, which was patched on July 25, enabled the attackers to set up auto-forwarding rules to an attacker-controlled email address.…