Atlassian Confluence data-wiping vulnerability exploited
Threat actors are trying to exploit CVE-2023-22518, a critical Atlassian Confluence flaw that allows unauthenticated attackers to reset vulnerable instances’ database, Greynoise is observing. The Shadowserver Foundation has also seen 30+ IP add.....»»
Medibank breach: Security failures revealed (lack of MFA among them)
The 2022 Medibank data breach / extortion attack perpetrated by the REvil ransomware group started by the attackers leveraging login credentials stolen from a private computer of an employee of a Medibank’s IT contractor. According to a stateme.....»»
How ShinyHunters hackers allegedly pilfered Ticketmaster data from Snowflake
Start with a third-party contractor and go from there. Enlarge (credit: Ric Tapia via Getty) Hackers who stole terabytes of data from Ticketmaster and other customers of the cloud storage firm Snowflake claim they obtain.....»»
Errors detected in several historical consumer price indices
Research from Lund University found several inaccuracies in historical CPIs in popular online databases. The findings, appearing in Cliometrica, can have major consequences for future research. Faults in the data might already have influenced decisio.....»»
Edge services are extremely attractive targets to attackers
The cyber threat landscape in 2023 and 2024 has been dominated by mass exploitation, according to WithSecure. Edge service KEV vulnerability trends 64% of all edge service and infrastructure Common Vulnerabilities and Exposures (CVEs) in the Known Ex.....»»
Satellites find that snow didn"t offset southwestern US groundwater loss
Record snowfall in recent years has not been enough to offset long-term drying conditions and increasing groundwater demands in the U.S. Southwest, according to a new analysis of NASA satellite data......»»
New database boasts more than 200 years of data on crime and punishment in the Nordics
The Historical Criminal Statistics database, a massive undertaking by University Lecturer in Criminology Miikka Vuorela at the University of Eastern Finland, makes statistics on crime and punishment openly accessible to everyone. The database covers.....»»
42% plan to use API security for AI data protection
While 75% of enterprises are implementing AI, 72% report significant data quality issues and an inability to scale data practices, according to F5. Data and the systems companies put in place to obtain, store, and secure it are critical to the succes.....»»
Mass exploitation is the new primary attack vector for ransomware
The cyber threat landscape in 2023 and 2024 has been dominated by mass exploitation, according to WithSecure. Edge service KEV vulnerability trends 64% of all edge service and infrastructure Common Vulnerabilities and Exposures (CVEs) in the Known Ex.....»»
Metomic’s Google User Groups feature alerts users when sensitive data might be at risk
Metomic launched its new integration with Google Groups. The feature enables IT and security teams to ensure data loss prevention (DLP) across all business units that leverage Google Groups, allowing organizations to better manage and enforce data se.....»»
AI’s impact on data privacy remains unclear
In this Help Net Security round-up, experts discuss the importance of embracing AI while implementing protective measures against threats, global AI adoption, consumer perceptions, and behaviors regarding data privacy. Complete videos Tracy Reinhold,.....»»
The rise of SaaS security teams
In this Help Net Security interview, Hillary Baron, Senior Technical Director for Research at CSA, highlights that the recent surge in organizations establishing dedicated SaaS security teams is driven by significant data breaches involving widely us.....»»
Week in review: JetBrains GitHub plugin vulnerability, 20k FortiGate appliances compromised
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Users of JetBrains IDEs at risk of GitHub access token compromise (CVE-2024-37051) JetBrains has fixed a critical vulnerability (CVE-2024-37051) tha.....»»
Sonos removes a promise to not sell personal data, gets busted by users
Audio hardware maker Sonos has removed a promise from its US user agreement that it wouldn't sell users' personal information, which went unnoticed until eagle-eyed users spotted the change.Sono users are angry about recent changes to the lineup's ap.....»»
NASA"s Voyager 1, the most distant spacecraft from Earth, is doing science again after problem
NASA's Voyager 1, the most distant spacecraft from Earth, is sending science data again......»»
Tesla investors sue Elon Musk for diverting carmaker’s resources to xAI
Lawsuit: Musk's xAI poached Tesla employees, Nvidia GPUs, and data. Enlarge (credit: Getty Images | SOPA Images) A group of Tesla investors yesterday sued Elon Musk, the company, and its board members, alleging that Tesl.....»»
Meta halts plans to train AI on Facebook, Instagram posts in EU
Meta was going to start training AI on Facebook and Instagram posts on June 26. Enlarge (credit: GreyParrot | iStock / Getty Images Plus) Meta has apparently paused plans to process mounds of user data to bring new AI ex.....»»
Ransomware attackers quickly weaponize PHP vulnerability with 9.8 severity rating
TellYouThePass group opportunistically infects servers that have yet to update. Enlarge (credit: Getty Images) Ransomware criminals have quickly weaponized an easy-to-exploit vulnerability in the PHP programming language.....»»
25 years of massive fusion energy experiment data open on the "cloud" and available to everyone
High-temperature fusion plasma experiments conducted in the Large Helical Device (LHD) of the National Institute for Fusion Science (NIFS), have renewed the world record for an acquired data amount, 0.92 terabytes (TB) per experiment, in February 202.....»»
Truist Bank confirms data breach after stolen data appears online
Sp1d3r is back with another bank attack, and is demanding $1 million this time......»»
Seeing at a distance with multicore fibers: All-optical, ultra-long-distance image acquisition and transmission system
With the exponential growth of data globally, the demand for high-speed acquisition and long-distance transmission of multidimensional data is escalating. Online video surveillance in sectors like industrial manufacturing has significantly boosted pr.....»»