Infosecurity News
Research Uncovers New Microsoft Outlook Vulnerability
CVE-2024-38173 is a medium severity RCE flaw in Microsoft Outlook, similar to CVE-2024-30103
High-Risk Cloud Exposures Surge Due to Rapid Service Growth
Firms are introducing 300 services monthly, contributing to 32% of high or critical cloud exposures
Critical Vulnerability Found in Microsoft’s AI Healthcare Chatbot
Tenable detailed two privilege escalation vulnerabilities in the Azure Health Bot Service, one of which has been rated critical
Cyber-Attack Spreads Phishing Scam Across Greater Manchester Areas
A cyber-attack has hit several boroughs across Greater Manchester, England, leaving thousands of residents vulnerable to a phishing scam
NCSC Calls on UK Firms to Join Mass Cyber-Deception Initiative
The UK’s National Cyber Security Centre wants to test the effectiveness of cyber-deception tactics
Microsoft Fixes Nine Zero-Days on Patch Tuesday
Microsoft’s August Patch Tuesday saw the tech giant address nine zero-day vulnerabilities
Gold Mining Firm in Australia Reports Ransomware Breach
In a Monday filing with the ASX, Evolution Mining stated that the incident was contained
NIST Formalizes World's First Post-Quantum Cryptography Standards
NIST has formalized three post-quantum cryptographic algorithms, with organizations urged to start the transition to quantum-secure encryption immediately
East Valley Institute of Technology Data Breach Exposes Over 200,000 Records
The EVIT breach exposed the data of 208,717 individuals, including students, faculty and parents
Phishing Campaign Compromises 100+ Ukrainian Government Computers
CERT-UA has warned that a mass phishing campaign impersonating Ukraine’s Security Services has infected more than 100 government devices
Prolific Belarusian Cybercriminal Arrested in Spain
Belarusian national Maksim Silnikau, who was operating under the ‘J.P. Morgan’ moniker, is believed to be one of the world’s most prolific Russian-speaking cybercriminals
South Korea Warns Pyongyang Has Stolen Spy Plane Details
South Korea’s People Power Party calls for new legislation after data on spy planes and tanks is hacked by North Korea
FBI Leads Effort to Dismantle Radar/Dispossessor Ransomware
The FBI and other law enforcers claim to have disrupted the Radar/Dispossessor ransomware group
Vulnerability in Windows Driver Leads to System Crashes
The CVE-2024-6768 flaw in the Windows CLFS.sys driver can lead to BSOD
DARPA Awards $14m to Seven Teams in AI Cyber Challenge
DARPA awards $14 million to seven teams competing to develop AI systems capable of identifying and patching vulnerabilities in open-source software
UN Adopts Controversial Cybercrime Treaty
Many stakeholders said the future UN convention could allow authoritarian countries to stifle political opposition and violate human rights
Microsoft Reveals Iranian US Election Interference Ops
Microsoft claims Iran is ramping up election interference activity in the US, as Trump campaign claims it was hacked
Man in Dock Accused of Breaking Hi-Tech Export Controls
Arthur Petrov is accused of exporting US chips for manufacturers supplying weaponry and equipment to the Russian military
#BHUSA: CISA Encourages Organizations to Adopt a 'Secure by Demand' Strategy
CISA Director Jen Easterly calls on organizations to drive cybersecurity improvements through a 'Secure by Demand' approach
#BHUSA: CoSAI, Combating AI Risks Through Industry Collaboration
Leading AI companies have formed the Coalition for Secure AI (CoSAI) to address the growing cybersecurity risks posed by artificial intelligence
