Ivanti Avalanche vulnerable to attack by unauthenticated, remote attackers (CVE-2023-32560)
Two stack-based buffer overflow bugs (collectively designated as CVE-2023-32560) have been discovered in Ivanti Avalanche, an enterprise mobility management solution. A buffer overflow arises when the data in a buffer surpasses its storage capacity......»»
Using ChatGPT to make fake social media posts backfires on bad actors
OpenAI claims cyber threats are easier to detect when attackers use ChatGPT. Using ChatGPT to research cyber threats has backfired on bad actors, OpenAI revealed in a report analy.....»»
Huge waves in the atmosphere dump extreme rain on northern Australia
In 2023, almost a year's worth of rain fell over ten days in parts of northwestern Australia, leading to catastrophic flooding in the town of Fitzroy Crossing and surrounds. The rainfall was linked to a tropical cyclone, but there were also lesser-kn.....»»
Internet Archive data breach exposes 31M users; under DDoS attack
An Internet Archive data breach has been confirmed by the organisation, which has also been suffering Distributed Denial-of-Service (DDoS) attacks. The home of the Wayback Machine was previously attacked back in May. At this point, it’s being su.....»»
Actively exploited Firefox zero-day fixed, update ASAP! (CVE-2024-9680)
Mozilla has pushed out an emergency update for its Firefox and Firefox ESR browsers to fix a vulnerability (CVE-2024-9680) that is being exploited in the wild. About CVE-2024-9680 Reported by ESET malware researcher Damien Schaeffer, CVE-2024-9680 is.....»»
Why Tampa Is So Vulnerable to Hurricane Milton
Tampa, Florida is the most vulnerable US city to hurricane damage. Delays to floodwater defenses and relentless development only made the situation worse......»»
Astronomers race to capture image of exoplanet near star
Planet AF Lep b is a world of firsts. In 2023, it was the lowest-mass planet outside our solar system to be directly observed and have its mass measured using astrometry. This is a technique that charts the subtle movements of a host star over many y.....»»
Satellite data show massive bombs dropped in dangerous proximity to Gaza Strip hospitals in 2023
Satellite data on the proximity of hundreds of M-84 bomb craters to hospitals in the Gaza Strip suggest that, as of November 2023, hospitals were not being given special protection from indiscriminate bombing, as mandated by international humanitaria.....»»
Tidal Cyber empowers organizations to improve their protection efforts
Tidal Cyber announced that it now incorporates test results from Breach and Attack Simulation (BAS) tools and other sources to complement the company’s existing Threat-Informed Defense capabilities. With this new integration, Tidal Cyber Enterprise.....»»
Exploit code for critical GitLab auth bypass flaw released (CVE-2024-45409)
If you run a self-managed GitLab installation with configured SAML-based authentication and you haven’t upgraded it since mid-September, do it now, because security researchers have published an analysis of CVE-2024-45409 and an exploit script.....»»
Universal lands Christopher Nolan’s next movie
After the success of Oppenheimer in 2023, Christopher Nolan has elected to stay with Universal Pictures for his next film. And his first actor may be lined up......»»
Africa"s Great Green Wall will only combat desertification and poverty by harnessing local solutions, say researchers
In the rural village of Téssékéré, the increasing number and intensity of droughts linked to climate change is making the lives and livelihoods of the local Fulani communities increasingly vulnerable. Here, in the northern Sahel desert region of.....»»
Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572)
For October 2024 Patch Tuesday, Microsoft has released fixes for 117 security vulnerabilities, including two under active exploitation: CVE-2024-43573, a spoofing bug affecting the Windows MSHTML Platform, and CVE-2024-43572, a remote code execution.....»»
Ivanti fixes three CSA zero-days exploited in the wild (CVE-2024-9379, CVE-2024-9380, CVE-2024-9381)
Ivanti has patched three additional Cloud Service Appliance (CSA) zero-day flaws, which have been exploited by attackers in conjuction with a zero-day bug the company accidentally fixed in September. The fixed zero-days “We are aware of a limit.....»»
Deadly human-wildlife conflict lies at center of Zimbabwe lake and an embattled economy, says author
A Griffith University researcher has shed light on the tragic and often overlooked human-wildlife conflicts surrounding a vast, picturesque lake that supports the livelihoods of villagers in a remote Zimbabwe region......»»
Chinese hack of US ISPs shows why Apple is right about backdoors for law enforcement
It was revealed this weekend that Chinese hackers managed to access systems run by three of the largest internet service providers (ISPs) in the US. What’s notable about the attack is that it compromised security backdoors deliberately created t.....»»
INSANE Prime Day deal shaves 45% off the Motorola Razr+ (2023)!
If you’re looking for a cheap foldable phone, then don’t miss this Prime Day deal for the Motorola Razr+ (2023). The post INSANE Prime Day deal shaves 45% off the Motorola Razr+ (2023)! appeared first on Phandroid. Foldable phones, for.....»»
How hybrid workforces are reshaping authentication strategies
In this Help Net Security interview, Brian Pontarelli, CEO at FusionAuth, discusses the evolving authentication challenges posed by the rise of hybrid and remote workforces. He advocates for zero trust strategies, including MFA and behavioral biometr.....»»
BreachLock Attack Surface Analytics strengthens enterprise CTEM capabilities
BreachLock strengthens continuous threat exposure management (CTEM) capabilities for enterprise customers with its new Attack Surface Analytics feature. Time is of the essence when Fortune 500 security teams find themselves waking up to a Code Red vu.....»»
Qualcomm zero-day under targeted exploitation (CVE-2024-43047)
An actively exploited zero-day vulnerability (CVE-2024-43047) affecting dozens of Qualcomm’s chipsets has been patched by the American semiconductor giant. About CVE-2024-43047 On Monday, Qualcomm has confirmed patches for 20 vulnerabilities af.....»»
In stunning Nobel win, AI researchers Hopfield and Hinton take 2024 Physics Prize
Hinton, who quit Google in 2023 to warn of AI dangers, was "flabbergasted" at the news. On Tuesday, the Royal Swedish Academy of Sciences awarded the 2024 Nobel Prize in Physics t.....»»