Internet Security

GitLab fixed a critical flaw that could allow arbitrary CI/CD pipeline execution

October 11, 2024 add comment
GitLab issued updates for CE and EE to address multiple flaws, including a critical bug allowing CI/CD pipeline runs on unauthorized branches. GitLab released security updates for Community Edition... Read more »

Iran and China-linked actors used ChatGPT for preparing attacks

October 11, 2024 add comment
OpenAI disrupted 20 cyber and influence operations in 2023, revealing Iran and China-linked actors used ChatGPT for planning ICS attacks. OpenAI announced the disruption of over 20 cyber and... Read more »

Internet Archive data breach impacted 31M users

October 11, 2024 add comment
The Internet Archive disclosed a data breach, the security incident impacted more than 31 million users of its “The Wayback Machine.” The Internet Archive is an American nonprofit digital... Read more »

E-skimming campaign uses Unicode obfuscation to hide the Mongolian Skimmer

October 10, 2024 add comment
Jscrambler researchers found a skimming campaign using unique JavaScript obfuscation with accented characters to hide a skimmer named Mongolian Skimmer. Jscrambler researchers uncovered a skimming campaign using unique JavaScript... Read more »

U.S. CISA adds Ivanti CSA and Fortinet bugs to its Known Exploited Vulnerabilities catalog

October 10, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Ivanti CSA and Fortinet bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following... Read more »

Mozilla issued an urgent Firefox update to fix an actively exploited flaw

October 10, 2024 add comment
Mozilla released an urgent Firefox update to fix a critical use-after-free vulnerability actively exploited in ongoing attacks. Mozilla released an emergency security update for its Firefox browser to address... Read more »

Palo Alto fixed critical flaws in PAN-OS firewalls that allow for full compromise of the devices

October 10, 2024 add comment
Palo Alto fixed critical flaws in PAN-OS firewalls, warning that attackers could chain these vulnerabilities to hijack the devices. Palo Alto Networks addressed multiple vulnerabilities that an attacker can... Read more »

Cybercriminals Are Targeting AI Conversational Platforms

October 9, 2024 add comment
Resecurity reports a rise in attacks on AI Conversational platforms, targeting chatbots that use NLP and ML to enable automated, human-like interactions with consumers. Resecurity has observed a spike... Read more »

Awaken Likho APT group targets Russian government with a new implant

October 9, 2024 add comment
A threat actor tracked as Awaken Likho is targeting Russian government agencies and industrial entities, reported cybersecurity firm Kaspersky. A recent investigation by Kaspersky researchers into the APT group... Read more »

U.S. CISA adds Windows and Qualcomm bugs to its Known Exploited Vulnerabilities catalog

October 9, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Windows and Qualcomm bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities... Read more »
Subscribe to our Newsletter