Critical Acronis Cyber Infrastructure vulnerability exploited in the wild (CVE-2023-45249)
CVE-2023-45249, a critical vulnerability affecting older versions of Acronis Cyber Infrastructure, is being exploited by attackers. About Acronis Cyber Infrastructure Acronis is a privately held Swiss cybersecurity and data protection technology comp.....»»
ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps
ScubaGear is an open-source tool the Cybersecurity and Infrastructure Security Agency (CISA) created to automatically evaluate Microsoft 365 (M365) configurations for potential security gaps. ScubaGear analyzes an organization’s M365 tenant configu.....»»
Week in review: Microsoft patches actively exploited 0-days, Amazon and HSBC employee data leaked
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039) November 2024 Patch Tuesday is here, and Microsoft has dropped fixes f.....»»
Extreme heat weakens land"s power to absorb carbon, analysis finds
A new European Space Agency-backed study shows that the extreme heat waves of 2023, which fueled huge wildfires and severe droughts, also undermined the land's capacity to soak up atmospheric carbon. This diminished carbon uptake drove atmospheric ca.....»»
Early Black Friday Nintendo Switch deals 2024: Up to 64% off
Are you looking for Nintendo Switch Cyber Monday deals on consoles, games, accessories, and more? You've come to the right place, because we have them all here......»»
Video: Environmental health professor explains wastewater woes
Few of us think about what happens to our waste after we flush the toilet, but to Jay Graham, its path is a critical part of improving human health......»»
Palo Alto Networks firewalls, Expedition under attack (CVE-2024-9463, CVE-2024-9465)
Attackers have been spotted exploiting two additional vulnerabilities (CVE-2024-9463, CVE-2024-9465) in Palo Alto Networks’ Expedition firewall configuration migration tool, CISA has confirmed on Thursday. About the vulnerabilities (CVE-2024-94.....»»
Cyber crooks push Android malware via letter
Cyber crooks are trying out an interesting new approach for getting information-stealing malware installed on Android users’ smartphones: a physical letter impersonating MeteoSwiss (i.e., Switzerland’s Federal Office of Meteorology and Cl.....»»
USX Cyber strengthens phishing defense in GUARDIENT XDR
USX Cyber released advanced phishing protection tools within its GUARDIENT XDR platform. This latest enhancement enables organizations to strengthen defenses against sophisticated phishing attacks by providing employees with realistic training and h.....»»
Bitsight acquires Cybersixgill to help organizations manage cyber exposure
Bitsight announced it has signed a definitive agreement to acquire Cybersixgill, a global cyber threat intelligence (CTI) data provider. Together, Bitsight and Cybersixgill will provide visibility into an organization’s external attack surface,.....»»
Nature pays price for war in Israel"s north
Across northern Israel's lush, green nature reserves, the ecological toll of the war between Israel and Hezbollah militants is laid bare: wild boar hit by shrapnel, trees reduced to ashes and swathes of charred vegetation......»»
Critical vulnerabilities persist in high-risk sectors
Finance and insurance sectors found to have the highest number of critical vulnerabilities, according to Black Duck. Finance and insurance industry faces highest vulnerabilities The report, which analyzes data from over 200,000 dynamic application se.....»»
Mathematical approach can predict crystal structure in hours instead of months
Researchers at New York University have devised a mathematical approach to predict the structures of crystals—a critical step in developing many medicines and electronic devices—in a matter of hours using only a laptop, a process that previously.....»»
A wild new Christmas movie immediately shot to #1 on Netflix
A wild new Christmas movie immediately shot to #1 on Netflix.....»»
Melting Glaciers Are Causing Billions of Dollars of Damage
Thawing ice, from the high peaks to the poles, is producing extraordinarily expensive floods, infrastructure damage and losses to tourism and fishing.....»»
NIST is chipping away at NVD backlog
The National Institute of Standards and Technology (NIST) is clearing the backlog of unprocessed CVE-numbered vulnerabilities in the National Vulnerability Database (NVD), but has admitted that their initial estimate of when they would finish the job.....»»
Experiments show backyard birds learn from their new neighbors when moving house
Scientists have found a trigger for social learning in wild animals. An experiment on great tits has pinpointed a single factor—immigration—that can cause birds to pay close attention to others, leading them to rapidly adopt useful behaviors......»»
FBI confirms China-linked cyber espionage involving breached telecom providers
After months of news reports that Chinese threat actors have breached the networks of US telecommunications and internet service providers, the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have confirmed the success of the atta.....»»
How a Windows zero-day was exploited in the wild for months (CVE-2024-43451)
CVE-2024-43451, a Windows zero-day vulnerability for which Microsoft released a fix on November 2024 Patch Tuesday, has been exploited since at least April 2024, ClearSky researchers have revealed. About the vulnerability CVE-2024-43451 affects all s.....»»
Zero-days dominate top frequently exploited vulnerabilities
A joint report by leading cybersecurity agencies from the U.S., UK, Canada, Australia, and New Zealand has identified the most commonly exploited vulnerabilities of 2023. Zero-day vulnerabilities on the rise The advisory highlights that malicious cyb.....»»
Google Cloud Cybersecurity Forecast 2025: AI, geopolitics, and cybercrime take centre stage
Google Cloud unveiled its Cybersecurity Forecast for 2025, offering a detailed analysis of the emerging threat landscape and key security trends that organizations worldwide should prepare for. The report delivers insights into the tactics of cyber a.....»»