Atlassian Confluence data-wiping vulnerability exploited
Threat actors are trying to exploit CVE-2023-22518, a critical Atlassian Confluence flaw that allows unauthenticated attackers to reset vulnerable instances’ database, Greynoise is observing. The Shadowserver Foundation has also seen 30+ IP add.....»»
GDPR turns six: Expert discusses AI impact
The European Union’s GDPR policy came into effect six years ago. Since then, it has become widely regarded as the standard for data sharing, but the rise of new technology has questioned its suitability and relevance. In this Help Net Security vide.....»»
Cloud migration expands the CISO role yet again
The CISO role used to be focused primarily on information security — creating and implementing policies to safeguard an organization’s data and IT infrastructure from cybersecurity threats. However, as organizations rapidly migrate to cloud envir.....»»
Elon Musk"s latest anti-Apple tirade is about a ChatGPT feature that doesn"t exist
Elon Musk has a fundamental misunderstanding of Apple's partnership with ChatGPT and believes that it's the gateway to automatically sharing all user data on iPhone with OpenAI.Apple and OpenAI partnered to bring ChatGPT to SiriOpenAI is one of sever.....»»
Apple’s AI promise: “Your data is never stored or made accessible to Apple”
And publicly reviewable server code means experts can "verify this privacy promise." Enlarge / Apple Senior VP of Software Engineering Craig Federighi announces "Private Cloud Compute" at WWDC 2024. (credit: Apple) With.....»»
Hackers steal “significant volume” of data from hundreds of Snowflake customers
Give shortcomings of Snowflake and its customers, there's plenty of blame to go around. Enlarge (credit: Getty Images) As many as 165 customers of cloud storage provider Snowflake have been compromised by a group that ob.....»»
Apple’s AI promise: “Your data is never stored or made accessible by Apple”
And publicly reviewable server code means experts can "verify this privacy promise." Enlarge / Apple Senior VP of Software Engineering Craig Federighi announces "Private Cloud Compute" at WWDC 2024. (credit: Apple) With.....»»
Mapping soil health: New index enhances soil organic carbon prediction
A cutting-edge machine learning model has been developed to predict soil organic carbon (SOC) levels, a critical factor for soil health and crop productivity. The innovative approach utilizes hyperspectral data to identify key spectral bands, offerin.....»»
Webb opens new window on supernova science
Peering deeply into the cosmos, NASA's James Webb Space Telescope is giving scientists their first detailed glimpse of supernovae from a time when our universe was just a small fraction of its current age. A team using Webb data has identified 10 tim.....»»
DataBee EntityViews accelerates zero trust architecture deployment
DataBee, from Comcast Technology Solutions, announced new capabilities in its DataBee Hive security, risk and compliance data fabric platform. DataBee EntityViews, powered by a patent-pending entity resolution technology, introduces automated detecti.....»»
The number of known Snowflake customer data breaches is rising
LendingTree subsidiary QuoteWizard and automotive parts provider Advance Auto Parts have been revealed as victims of attackers who are trying to sell data stolen from Snowflake-hosted cloud databases. Snowflake says that their investigation is still.....»»
PHP code could be easily exploited to let hackers target Windows servers
Users are advised to apply the patch immediately or risk having malicious code run remotely......»»
Star cluster shines in new look from NASA"s Chandra
Westerlund 1 is the biggest and closest "super" star cluster to Earth. New data from NASA's Chandra X-ray Observatory, in combination with other NASA telescopes, is helping astronomers delve deeper into this galactic factory where stars are vigorousl.....»»
New chip-scale erbium-based laser offers broad wavelength tunability
Lasers have revolutionized the world since the 60s and are now indispensable in modern applications, from cutting-edge surgery and precise manufacturing to data transmission across optical fibers......»»
Deriving mammalian DNA methylation predictors for maximum life span, gestation time and age at sexual maturity
A research team has found that there are epigenetic predictors of species life span and other traits in mammals. In their paper published in the journal Science Advances, the group describes how they analyzed data held in a database created by the Ma.....»»
Frontier hack affects over 750k customers; company waits two months to notify them
A Frontier hack exposed the personal data of at least 750,000 customers, including full names and social security numbers, which places them at significant risk of identity theft. The ransomware group said to be behind the attack claims that the actu.....»»
Don"t install Apple"s new betas -- let others risk their devices
Every year Apple releases beta test versions of its newest software, and every year people lose data, time, and money to it. If you value any of those, wait.Really bricking your iPhone doesn't look this good.You may have been lucky so far, but this i.....»»
AI’s role in accelerating vulnerability management
With its capability to analyze, predict, and automate, AI stands to reshape many corners of business, most notably cybersecurity. In the field of vulnerability management specifically, AI is poised to have a profound impact, enhancing two key areas:.....»»
Security Bite: Apple refused to pay bounty to Kaspersky for uncovering vulnerability part of ‘Operation Triangulation’
Kaspersky, the renowned Russian cybersecurity firm, made headlines at this time last year after uncovering an attack chain using four iOS zero-day vulnerabilities to create a zero-click exploit. Kaspersky was able to identify and report one of the vu.....»»
Week in review: Atlassian Confluence RCE PoC, new Kali Linux, Patch Tuesday forecast
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: High-risk Atlassian Confluence RCE fixed, PoC available (CVE-2024-21683) If you’re self-hosting an Atlassian Confluence Server or Data Center inst.....»»
SolarWinds fixes severe Serv-U vulnerability (CVE-2024-28995)
SolarWinds has fixed a high-severity vulnerability (CVE-2024-28995) affecting its Serv-U managed file transfer (MFT) server solution, which could be exploited by unauthenticated attackers to access sensitive files on the host machine. About CVE-2024-.....»»