Third Chrome Zero-Day Patched by Google Within One Week (www.securityweek.com)
Google releases Chrome 125 to the stable channel with patches for nine vulnerabilities, including a zero-day.
This magazine is from a federated server and may be incomplete. Browse more on the original instance.
Google releases Chrome 125 to the stable channel with patches for nine vulnerabilities, including a zero-day.
The FBI, in combination with police around the world, have taken control of the website and Telegram channel of ransomware brokerage site BreachForums.
MITRE has shared more details on the recently disclosed hack, including the new malware involved in the attack, attribution information, and a timeline of the attacker’s activities.
A survey of cybercrime experts assessing the top cybercrime-producing nations results in some expected leaders — Russia, Ukraine, and China — but also some surprises.
Curious how none of the coverage of this purchase mention that the app isn’t open-source, which makes all of their claims of “end-to-end encryption” worthless...
cross-posted from: midwest.social/post/10338366...
CSI: Advancing Zero Trust Maturity Throughout the Network and Environment Pillar [pdf]...
One of the vulnerabilities (identified as CVE-2024-27198) has a near-maximum severity CVSS rating of 9.8 out of 10 and is an authentication bypass issue in TeamCity’s Web component. Researchers from Rapid7 who discovered the vulnerability and reported it to JetBrains have described it as enabling a remote unauthenticated...
NIST is a US government org that produces industry guidlines on best practices for cybersecurity, and they’ve just released a massive update to their framework.
“On February 21, 2024, Cencora, Inc. (the “Company”), learned that data from its information systems had been exfiltrated, some of which may contain personal information,” reads the SEC filing....