Recent Security News
-
CISA Now Flagging Vulnerabilities, Misconfigurations Exploited by Ransomware
October 13, 2023 at 10:12AM The US cybersecurity agency CISA has released two new resources to help organizations identify and eliminate security flaws targeted by ransomware groups. The resources include a column in the Known Exploited Vulnerabilities catalog that flags flaws associated with ransomware campaigns, and a table on the StopRansomware project’s website listing misconfigurations…
-
What the Hollywood Writers Strike Resolution Means for Cybersecurity
October 13, 2023 at 10:07AM The Writers Guild of America’s strike, centered on the role of artificial intelligence (AI) in creative processes, has ended with a victory for writers. The agreement bans the independent use of AI for writing and ensures that writers receive credit for their creative contributions. This sets a precedent that AI…
-
Juniper Networks Patches Over 30 Vulnerabilities in Junos OS
October 13, 2023 at 09:19AM Juniper Networks has released patches for over 30 vulnerabilities in Junos OS and Junos OS Evolved. The most critical flaw is an incorrect default permissions bug that allows unauthorized access and the creation of a backdoor with root privileges. Other vulnerabilities include denial of service (DoS) risks and impacts on…
-
In Other News: Ex-Uber Security Chief Appeal, New Offerings From Tech Giants, Crypto Bounty
October 13, 2023 at 09:19AM SecurityWeek provides a concise compilation of noteworthy cybersecurity stories. This week’s stories include the appeal of former Uber security chief Joe Sullivan against his conviction for covering up a data breach, a bounty offered for finding the NIST elliptic curve seeds, analysis of surveillance products by NSO Group competitor Intellexa,…
-
Equifax scores £11.1M slap on wrist over 2017 mega breach
October 13, 2023 at 08:55AM Equifax has been fined £11 million ($13.6 million) by the UK’s Financial Conduct Authority (FCA) for failing to protect consumers from financial crime. The FCA criticized Equifax for its failure to notify regulators promptly and for misleading the public about the severity of a security breach in 2017. The original…