Google Open Sources Security Patch Validation Tool for Android

December 6, 2024 at 07:00AM Google has open-sourced Vanir, a patch validation tool for Android developers to detect missing security patches efficiently. With automated code scanning, Vanir improves security update processes for OEMs, streamlining vulnerability management. The tool, which supports C/C++ and Java, can also be adapted for other ecosystems beyond security validation. **Meeting Takeaways:** … Read more

Library of Congress Says an Adversary Hacked Some Emails

November 18, 2024 at 05:12AM The Library of Congress reported a cyber breach involving unauthorized access to email communications between congressional offices and library staff from January to September. The incident has been referred to law enforcement, while the library confirmed that the House and Senate IT networks were not compromised. ### Meeting Takeaways: 1. … Read more

Attackers Exploit Critical Atlassian Confluence Flaw for Cryptojacking

August 28, 2024 at 02:34PM Threat actors are exploiting a critical remote code execution bug in Atlassian to turn cloud environments into cryptomining networks. Trend Micro uncovered attacks that drain network resources using the flaw CVE-2023-22527 in Confluence Data Center and Server. The attackers use various methods and recommended patching the environment to prevent exploitation. … Read more

Hitachi Energy Vulnerabilities Plague SCADA Power Systems

August 28, 2024 at 10:47AM Hitachi Energy advises immediate upgrade to the latest version of MicroSCADA X SYS600 to address multiple critical and high-severity vulnerabilities in the product. The vulnerabilities pose confidentiality, integrity, and availability risks, impacting over 10,000 substations and various industries. Hitachi Energy is not aware of any current exploitation, but urges prompt … Read more

Multiple flaws in Microsoft macOS apps unpatched despite potential risks

August 19, 2024 at 03:07PM Eight vulnerabilities in Microsoft’s macOS apps pose security risks by allowing unauthorized access to sensitive data, recording video and sound, and escalating privileges. Microsoft has been reluctant to address the issues, deeming them low risk and insisting that certain applications require the ability to load unsigned libraries. Apple’s security measures … Read more

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks

August 7, 2024 at 11:12AM SafeBreach Labs researcher Alon Leviev disclosed critical flaws in Microsoft’s Windows Update, enabling software downgrade attacks that render fully patched Windows machines susceptible to past vulnerabilities. Leviev demonstrated these downgrades at the recent Black Hat conference in Las Vegas and worked with Microsoft to develop a security update to mitigate … Read more

US to Invest $50 Million in Securing Hospitals Against Cyber Threats

May 22, 2024 at 09:57AM The US government’s ARPA-H announced a $50 million cybersecurity effort, UPGRADE, to secure hospital IT systems. The program aims to identify vulnerabilities and automatically procure, test, and deploy patches. Collaboration between IT staff, medical device makers, healthcare providers, and cybersecurity experts is crucial for creating a software suite tailored for … Read more

Critical Netflix Genie Bug Opens Big Data Orchestration to RCE

May 22, 2024 at 09:03AM Netflix has patched a critical vulnerability in its open source Genie job orchestration engine, designated as CVE-2024-4701. Remote attackers could potentially execute arbitrary code, exploiting a file upload process. The bug is present in Genie OSS versions prior to 4.3.18. Organizations are urged to upgrade to the fixed version to … Read more

Uncle Sam to inject $50M into auto-patcher for hospital IT

May 21, 2024 at 08:53PM The US government’s ARPA-H is providing over $50 million for the UPGRADE program, aiming to automate hospital IT security. The initiative seeks to develop software tools to find and fix vulnerabilities in medical systems without disrupting services. This effort aligns with ARPA-H’s mission to advance medical technologies and protect healthcare … Read more

CISA’s early-warning system helped critical orgs close 852 ransomware holes

May 7, 2024 at 04:11PM CISA is launching a Ransomware Vulnerability Warning Pilot program to help healthcare, schools, and critical infrastructure organizations address security flaws exploited by ransomware groups. The system sent 1,754 notifications in its first year, resulting in 49% of organizations taking action. The program is set to become a fully automated warning … Read more