New persistent backdoor used in attacks on Barracuda ESG appliances
The Cybersecurity and Infrastructure Agency (CISA) has published an analysis report on the backdoors dropped by attackers exploiting CVE-2023-2868, a remote command injection vulnerability in Barracuda Email Security Gateway (ESG) appliances. Barracu.....»»
Russia’s Starlink use sparks probe into SpaceX compliance with US sanctions
Despite US sanctions, Russia using Starlink "to coordinate attacks" in Ukraine. Enlarge / A Starlink terminal used by the Ukraine army for drone operations in May 2023. (credit: Getty Images | Pacific Press ) Democratic.....»»
Aroma compound found to reduce the effects of drought, improve productivity of tomato plants
Tomato plants emit a scent to resist bacterial attacks. This aroma—or volatile compound—is hexenyl butanoate (HB). A team from the Research Institute for Plant Molecular and Cellular Biology (IBMCP), a joint center of the Universitat Politècnica.....»»
Law enforcement doesn’t want to be “customer service” reps for Meta any more
“Dramatic and persistent spike” in account takeovers is "substantial drain" on resources. Enlarge / Meta has a verified program for users of Facebook and Instagram. (credit: Getty Images | Chesnot ) Forty-one state a.....»»
Standing together against hate: A collective responsibility
Hate speech incidents are widespread in all areas of society and are often unchallenged by uninvolved bystanders. LMU researchers have investigated what significance the reactions of bystanders to verbal hate attacks have for the formation of social.....»»
Pentera Cloud empowers security teams to reduce exposure to cloud-native attacks
Pentera launched Pentera Cloud as part of its automated security validation platform to complement its renowned Pentera Core and Surface products. Pentera Cloud is the software product enabling on-demand security testing and resilience assessment of.....»»
Cloudflare announces Firewall for AI to help security teams secure their LLM applications
Cloudflare announced the development of Firewall for AI, a new layer of protection that will identify abuse and attacks before they reach and tamper with Large Language Models (LLMs), a type of AI application that interprets human language and other.....»»
Enhancing statistical reliability of weather forecasts with machine learning
A global team of researchers has made strides in refining weather forecasting methods, with a specific focus on addressing the persistent issue of "quantile crossing." This phenomenon disrupts the order of predicted values in weather forecasts and ar.....»»
Akamai App & API Protector enhancements detect and mitigate short DDoS attack bursts
Akamai announced significant additions to its flagship Akamai App & API Protector product, including advanced defenses against sophisticated application-layer distributed denial-of-service (DDoS) attacks. The enhanced Layer 7 DDoS protections now pre.....»»
95% believe LLMs making phishing detection more challenging
More than 95% of responding IT and security professionals believe social engineering attacks have become more sophisticated in the last year, according to LastPass. Recent AI advancements, particularly generative AI, have empowered cybercriminals to.....»»
Integrity of "independent" state traffic stop analysis questioned by researcher"s opposite conclusions
A Northeastern University professor who found a persistent and widespread discrepancy in how often Massachusetts police ticket white drivers and drivers of color is questioning the analysis of a report released by the state Executive Office of Public.....»»
Lazarus hackers return and hijack a Windows security flaw
North Korean hackers were seen disabling antivirus programs, possibly paving the way for more dangerous attacks......»»
Vishing, smishing, and phishing attacks skyrocket 1,265% post-ChatGPT
76% of enterprises lack sufficient voice and messaging fraud protection as AI-powered vishing and smishing skyrocket following the launch of ChatGPT, according to Enea. Enterprises report significant losses from mobile fraud 61% of enterprises still.....»»
State-sponsored hackers know enterprise VPN appliances inside out
Suspected Chinese state-sponsored hackers leveraging Ivanti Connect Secure VPN flaws to breach a variety of organizations have demonstrated “a nuanced understanding of the appliance”, according to Mandiant incident responders and threat h.....»»
Akamai extends its segmentation solution to hybrid cloud environments
Akamai announced that it is extending its segmentation solution, Akamai Guardicore Segmentation, to hybrid cloud environments. Extending Akamai Guardicore Segmentation to the cloud helps reduce attack surfaces and helps contain attacks targeting clou.....»»
NetSTAR PhishCompass combats phishing threats
NetSTAR announced an advancement in phish detection technology with the introduction of PhishCompass. This innovative AI-supported solution marks a significant milestone in the ongoing battle against phishing threats and attacks, tailored for a wide.....»»
Predatory fish use rapid color changes to coordinate attacks, scientists discover
Striped marlin are some of the fastest animals on the planet and one of the ocean's top predators. When hunting in groups, individual marlin will take turns attacking schools of prey fish one at a time. Now a new study reported in the journal Current.....»»
Cybersecurity crisis in schools
Primary school systems handle sensitive data concerning minors, while higher education institutions must safeguard intellectual property data, making them prime targets for cyberattacks, according to Trustwave. These attacks not only threaten the saf.....»»
Your air quality may be more dangerous than your phone is telling you: The EPA seems fine with that
The U.S. Environmental Protection Agency's recent adoption of a more stringent annual limit on fine particulate matter, or soot, fulfills an overdue obligation to curb a pervasive and deadly type of air pollution that triggers asthma, heart attacks,.....»»
MSPs undergo transformation in response to persistent cyber threats
2Organizations are increasingly turning to Managed Service Providers (MSPs) to alleviate pressure on IT departments, according to SonicWall. Managed services have emerged as a game-changing solution, providing organizations with an additional human-l.....»»
Tinder will soon require IDs for a verification checkmark
Tinder is adding ID verification to certain countries in the coming months. If you want a blue check, you'll have to complete it. Catfishing and scams are persistent problems on dating apps — and to curb it, Tinder's now asking for IDs. S.....»»