July 26, 2024 at 06:59PM CrowdStrike’s update caused widespread disruption, particularly in healthcare, with over half of the Health Information Sharing and Analysis Center affected. Recovery efforts continue, with only 18% fully recovered as of July 25. Microsoft released a USB Recovery Tool, but some systems, especially in healthcare, require manual intervention. The outage may … Read more
July 26, 2024 at 05:24PM Millions of Intel and ARM-based computing systems are vulnerable to attackers due to a leaked cryptographic key used in the Secure Boot process. The issue, dubbed “PKFail,” allows bypassing of Secure Boot and affects devices from vendors like Lenovo, HP, and Asus. Firmware updates are needed to address this widespread … Read more
July 26, 2024 at 03:37PM Cryptocurrency exchange Gemini experienced a data breach due to a cyberattack at its ACH service provider. A third-party breached the system, affecting customers’ banking information, including full names, bank account numbers, and routing numbers used for ACH fund transfers. The incident has been contained, and an investigation is ongoing. Recipients … Read more
July 26, 2024 at 02:34PM The US Department of Justice has unsealed an indictment of a North Korean military intelligence operative, Rom Jong Hyok, accused of carrying out ransomware attacks against US healthcare facilities, and funneling the ransom payments to other breaches globally. The hacking crew, Andariel, controlled by DPRK’s military intelligence agency, poses an … Read more
July 26, 2024 at 01:49PM Nvidia has embraced the generative AI revolution, utilizing large language models (LLMs) and internal AI applications. At Black Hat USA, Richard Harang will discuss lessons learned in securing these systems. Despite potential risks, securing AI systems is not inherently more difficult than traditional systems and requires essential security attributes. Additionally, … Read more
July 26, 2024 at 12:46PM Acronis warned customers to patch a critical Cyber Infrastructure security flaw allowing attackers to bypass authentication on vulnerable servers. The flaw, labeled CVE-2023-45249, impacts multiple Acronis Cyber Infrastructure products. Over 20,000 service providers and 750,000 businesses use Acronis Cyber Protect to protect their data. The company advises users to update … Read more
July 26, 2024 at 10:39AM Progress Software has alerted users to a critical-severity vulnerability (CVE-2024-6327) in its Telerik Report Server product, enabling remote code execution. Version 2024 Q2 (10.1.24.709) addresses the flaw, urging immediate user updates. Temporary mitigation includes altering the user for the Report Server Application Pool. Threat actors have exploited similar vulnerabilities, prompting … Read more
July 26, 2024 at 09:36AM The GXC Team, a Spanish-speaking cybercrime group, has bundled phishing kits with malicious Android apps, creating a sophisticated phishing-as-a-service platform. They target users of Spanish banks and institutions worldwide, using smishing and social engineering techniques. The threat also involves AI-infused voice calling tools, AI-powered voice cloning, and adversaries-in-the-middle capabilities in … Read more
July 26, 2024 at 06:27AM Email security providers are expanding their offerings to include human risk management tools for data loss prevention (DLP). Mimecast acquired Code42, their second human risk management acquisition this year. Competitors like Proofpoint, Sophos, and ESET are also making similar moves. Mimecast’s CEO highlighted plans to integrate Code42’s capabilities and maintain … Read more
July 26, 2024 at 05:00AM The U.S. Department of Justice indicted a North Korean operative for ransomware attacks on healthcare facilities to fund illicit activities. The U.S. Department of State offered up to $10 million for information. The operative is linked to a hacking crew deploying the Maui ransomware, targeting U.S. Air Force bases and … Read more