Tag: vulnerabilities
-
Alerts: CISA Releases Eight Industrial Control Systems Advisories
Source URL: https://www.cisa.gov/news-events/alerts/2025/01/30/cisa-releases-eight-industrial-control-systems-advisories Source: Alerts Title: CISA Releases Eight Industrial Control Systems Advisories Feedly Summary: CISA released eight Industrial Control Systems (ICS) advisories on January 30, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-030-01 Hitachi Energy UNEM ICSA-25-030-02 New Rock Technologies Cloud Connected Devices ICSA-25-030-03 Schneider Electric…
-
The Register: Ransomware attack at New York blood services provider – donors turned away during shortage crisis
Source URL: https://www.theregister.com/2025/01/30/ransomware_attack_at_new_york/ Source: The Register Title: Ransomware attack at New York blood services provider – donors turned away during shortage crisis Feedly Summary: 400 hospitals and med centers across 15 states rely on its products New York Blood Center Enterprises (NYBCe) is currently in its fifth day of handling a ransomware attack that has…
-
The Register: Canvassing apps used by UK political parties riddled with privacy, security issues
Source URL: https://www.theregister.com/2025/01/30/uk_canvassing_app_issues/ Source: The Register Title: Canvassing apps used by UK political parties riddled with privacy, security issues Feedly Summary: Neither Labour, Conservatives, nor the Lib Dems offered a retort to rights org’s report The Open Rights Group (ORG) has raised concerns about a number of security issues it found in all three of…
-
CSA: How Can CISOs Ensure Safe AI Adoption?
Source URL: https://normalyze.ai/blog/unlocking-the-value-of-safe-ai-adoption-insights-for-security-practitioners/ Source: CSA Title: How Can CISOs Ensure Safe AI Adoption? Feedly Summary: AI Summary and Description: Yes Summary: The text discusses critical strategies for security practitioners, particularly CISOs, to safely adopt AI technologies within organizations. It emphasizes the need for visibility, education, balanced policies, and proactive threat modeling to ensure both innovation…
-
The Register: Wacom says crooks probably swiped customer credit cards from its online checkout
Source URL: https://www.theregister.com/2025/01/30/wacom_data_loss/ Source: The Register Title: Wacom says crooks probably swiped customer credit cards from its online checkout Feedly Summary: Digital canvas slinger indicates dot-com was skimmed for over a month Graphics tablet maker Wacom has warned customers their credit card details may well have been stolen by miscreants while they were buying stuff…
-
The Register: Lazarus Group cloned open source projects to plant backdoors, steal credentials
Source URL: https://www.theregister.com/2025/01/29/lazarus_groups_supply_chain_attack/ Source: The Register Title: Lazarus Group cloned open source projects to plant backdoors, steal credentials Feedly Summary: Stealing crypto is so 2024. Supply-chain attacks leading to data exfil pays off better? North Korea’s Lazarus Group compromised hundreds of victims across the globe in a massive secret-stealing supply chain attack that was ongoing…
-
Unit 42: CL-STA-0048: An Espionage Operation Against High-Value Targets in South Asia
Source URL: https://unit42.paloaltonetworks.com/?p=138128 Source: Unit 42 Title: CL-STA-0048: An Espionage Operation Against High-Value Targets in South Asia Feedly Summary: A Chinese-linked espionage campaign targeted entities in South Asia using rare techniques like DNS exfiltration, with the aim to steal sensitive data. The post CL-STA-0048: An Espionage Operation Against High-Value Targets in South Asia appeared first…