Loading...
Blog
Insights, updates, and deep dives into cybersecurity, cloud technology, and AI innovation.
news
Jun 3, 2024
BlackSuit Claims Dozens of Victims With Carefully Curated Ransomware
The BlackSuit ransomware gang has leaked stolen data from attacks against 53 organizations spanning a year, particularly in the education and industrial goods sectors. This targeted approach suggests they're aiming to maximize profits by hitting businesses more likely to pay high ransoms. Their success is linked, in part, to exploiting weak security measures.
3 min
news
May 31, 2024
High-severity GitLab flaw lets attackers take over accounts
GitLab recently addressed two critical security vulnerabilities. The first, patched in May 2024 (CVE-2024-4835), is a high-severity flaw in the VS code editor that allows attackers to steal sensitive information through malicious web pages.
2 min
news
May 29, 2024
Beware – Your Customer Chatbot is Almost Certainly Insecure: Report
There's a rising security risk with customer chatbots, especially those built on readily available general-purpose AI engines. While these chatbots are convenient to develop, securing them is a challenge, as a recent incident demonstrates. In January 2024, a researcher managed to manipulate a chatbot into bad-mouthing its own company.
2 min
news
May 24, 2024
Apple and Google add alerts for unknown Bluetooth trackers to iOS, Android
Apple and Google are joining forces to combat unwanted Bluetooth tracking. A new feature, "Detecting Unwanted Location Trackers," has begun rolling out on iOS 17.5 and Android 6.0+ devices.
2 min
news
May 23, 2024
Scammers Fake DocuSign Templates to Blackmail & Steal From Companies
Scammers are capitalizing on DocuSign's popularity to launch phishing attacks against businesses. A black market thrives for fake DocuSign templates and login credentials, making it easier for attackers to build convincing scams. Phishing emails disguised as DocuSign requests are on the rise.
3 min
news
May 20, 2024
Apple Patch Day: Code Execution Flaws in iPhones, iPads, macOS
Apple recently released urgent security updates for iPhones, iPads, and macOS to combat various vulnerabilities, including a critical zero-day exploit actively used by attackers. This zero-day flaw, CVE-2024-23296, resides within Apple RTKit, a core operating system component present on most Apple devices.
2 min
news
May 17, 2024
Google Debuts New Security Products, Hyping AI and Mandiant Expertise
Google is entering the booming cybersecurity market with a fresh set of security products that leverage both threat intelligence and security operations expertise acquired through Mandiant, a company Google purchased in 2023.
2 min
news
May 15, 2024
Vast Network of Fake Web Shops Defrauds 850,000 & Counting
Researchers have uncovered a large network of fake online stores operated by a China-based cybercriminal group called BogusBazaar. This group has defrauded over 850,000 victims so far by creating tens of thousands of deceptive websites.
2 min
news
May 13, 2024
Google fixes fifth Chrome zero-day exploited in attacks this year
Google addressed a critical security vulnerability (CVE-2024-4671) in Chrome, the fifth zero-day exploit found this year. This flaw, which resides in the browser's visual rendering component, could grant attackers unauthorized access to data or even control of your computer.
3 min