Recent Security News
-
Threat Actors Exploit Atlassian Confluence CVE-2023-22515 for Initial Access to Networks
October 16, 2023 at 10:46AM The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing and Analysis Center (MS-ISAC) have issued a joint Cybersecurity Advisory (CSA) about the active exploitation of CVE-2023-22515, a vulnerability in Atlassian Confluence Data Center and Server. This vulnerability allows cyber threat actors to gain…
-
Signal Pours Cold Water on Zero-Day Exploit Rumors
October 16, 2023 at 10:36AM Signal denies the existence of a zero-day exploit in its encrypted chat app, dismissing viral rumors as baseless. The rumored vulnerability involves the “generate link preview” feature, which has known privacy and security risks. Signal checked with contacts within the US Government, as claimed by the report, and found no…
-
Academics Devise Cyber Intrusion Detection System for Unmanned Robots
October 16, 2023 at 10:36AM Australian researchers have developed an AI-driven cyber intrusion detection system to assist unmanned military robots in identifying man-in-the-middle (MitM) cyberattacks. The system, which uses deep learning convolutional neural networks (CNNs), aims to reduce vulnerabilities in the robot operating system (ROS) used by civilian and military robots. The algorithm achieved 99%…
-
How Data Changes the Cyber-Insurance Market Outlook
October 16, 2023 at 10:08AM The global cyber insurance market is growing rapidly, expected to reach $84.62 billion by 2030. However, many companies are uncertain about how much coverage they need, and insurers struggle to assess individual risk. This has led to significant losses in the cyber insurance market. Rates have spiked due to increased…
-
Pro-Russian Hackers Exploiting Recent WinRAR Vulnerability in New Campaign
October 16, 2023 at 10:03AM Russian hacking groups have been exploiting a security vulnerability in the WinRAR archiving utility to launch a phishing campaign. The attack involves malicious archive files that exploit the vulnerability, allowing the attacker to gain remote access to compromised systems. The campaign also steals data from Google Chrome and Microsoft Edge…