How EU lawmakers can make mandatory vulnerability disclosure responsible
There is a standard playbook and best practice for when an organization discovers or is notified about a software vulnerability: The organization works quickly to fix the problem and, once a fix is available, discloses that vulnerability for the bene.....»»
Zyxel patches vulnerability in NAS devices (CVE-2023-27988)
Zyxel has patched a high-severity authenticated command injection vulnerability (CVE-2023-27988) in some of its network attached storage (NAS) devices aimed at home users. About the vulnerability (CVE-2023-27988) The vulnerability was discovered in t.....»»
Critical Barracuda 0-day was used to backdoor networks for 8 months
Attackers then went on to steal data from infected systems. Enlarge (credit: Getty Images) A critical vulnerability patched 10 days ago in widely used email software from IT security company Barracuda Networks has been u.....»»
Microsoft found a macOS exploit that could completely bypass System Integrity Protection
Microsoft identified a new macOS vulnerability called "Migraine" that can cause headaches for Mac users — but only if you haven't updated your software recently.Apple patched macOS "Migraine" exploitOn May 30, Microsoft published a new threat intel.....»»
Attackers hacked Barracuda ESG appliances via zero-day since October 2022
Barracuda says that the recently discovered compromise of some of it clients’ ESG appliances via a zero-day vulnerability (CVE-2023-2868) resulted in the deployment of three types of malware and data exfiltration. The company did not say how ma.....»»
Week in review: Zyxel firewalls vulnerability, phishing campaign targets ChatGPT users
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Wireless Broadband Alliance CEO on key drivers for Wi-Fi adoption in enterprise networks This Help Net Security interview with Tiago Rodrigues, CEO.....»»
Biden admin wants Europe to reject forced payments from Big Tech to ISPs
US: Mandatory fees would give ISPs a new bottleneck and raise costs for users. Enlarge (credit: Getty Images | Alan Schein) The Biden administration urged Europe to reject the telecom industry plan to make Big Tech compa.....»»
Fresh perspectives needed to manage growing vulnerabilities
In its inaugural 2023 Offensive Security Vision Report, NetSPI unveils findings that highlight vulnerability trends across applications, cloud, and networks. Vulnerability patterns The report offers a look back — and forward — at some of the most.....»»
Senate Republicans want EPA to drop plan to cut emissions, boost EVs
In a letter led by U.S. Sen. Shelley Moore Capito, R-W.Va., lawmakers said the plan will "effectively mandate a costly transition to electric cars and trucks in the absence of congressional direction.".....»»
When is it too late to give up control of your finances?
America is getting older. By 2050, one-fifth of the U.S. population is projected to be over the age of 65. And the way we're aging is changing, too. Older people today are more responsible for managing their finances than they were in the past......»»
Barracuda email security appliances hacked via zero-day vulnerability (CVE-2023-2868)
A vulnerability (CVE-2023-2868) in Barracuda Networks’ Email Security Gateway (ESG) appliances has been exploited by attackers, the company has warned. About CVE-2023-2868 CVE-2023-2868 is a critical remote command injection vulnerability affec.....»»
6 ChatGPT risks for legal and compliance leaders
Legal and compliance leaders should address their organization’s exposure to six specific ChatGPT risks, and what guardrails to establish to ensure responsible enterprise use of generative AI tools, according to Gartner. “The output generated by.....»»
Recently discovered protein domain regulates collagen transport
Collagen is the protein that holds our body together. It is produced inside cells, from where it must be transported to its site of action in connective tissue. The protein domain that is responsible for the recognition of collagen has previously bee.....»»
Vulnerability in Zyxel firewalls may soon be widely exploited (CVE-2023-28771)
A recently fixed command injection vulnerability (CVE-2023-28771) affecting a variety Zyxel firewalls may soon be exploited in the wild, Rapid7 researchers have warned, after publishing a technical analysis and a PoC script that triggers the vulnerab.....»»
Week in review: KeePass vulnerability, Apple fixes exploited WebKit 0-days
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Apple fixes WebKit 0-days under attack (CVE-2023-28204, CVE-2023-32373, CVE-2023-32409) Apple has released security updates for iOS and iPadOS, macO.....»»
A guide through the genome of crops
Plants show enormous variety in traits relevant to breeding, such as plant height, yield and resistance to pests. One of the greatest challenges in modern plant research is to identify the differences in genetic information that are responsible for t.....»»
Inadequate tools leave AppSec fighting an uphill battle for cloud security
AppSec teams are stuck in a catch-up cycle, unable to keep up with the increasingly rapid, agile dev pace, and playing security defense via an endless and unproductive vulnerability chase, according to Backslash Security. Costly ‘defensive tax’ N.....»»
France moves to ban smoking in woodlands to combat growing climate-related risk of mega fires
French lawmakers have voted to ban smoking in all forests and woods during the fire season, part of a series of proposed measures to tackle growing destruction and dangers from climate change-related blazes......»»
Why do Japanese teachers seem unready to teach critical thinking in classrooms?
Globally, critical thinking (CT) is regarded as a highly desirable cognitive skill that enables a person to question, analyze, and assess an idea or theory from multiple perspectives. CT has become an integral and mandatory part of global educational.....»»
Supreme Court overturns ruling holding platforms responsible for users" criminal activity
The Supreme Court has maintained that internet platforms such as social media are not responsible for users' content and actions, even if it results in criminal conduct or death.US Supreme CourtOn Thursday, the Supreme Court ruled that Twitter could.....»»
First US state officially bans TikTok, $10,000 fine per violation
Last month, lawmakers in Montana voted to approve a first-of-its-kind bill to ban TikTok across the state. The final hurdle for that bill was a signature from Montana Governor Greg Gianforte, and he has now officially given the bill his seal of appr.....»»