Category: security
Critical severity flaw warning issued by CISA for SolarWinds Web Help Desk
A critical vulnerability in a SolarWinds product is being abused in the wild, and now US government agencies have a deadline to patch it or lose it. The US Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2024-28987 to its Known Exploited Vulnerabilities (KEV) catalog. When a vulnerability is added…
Read More
Microsoft issues guidance on how best to hit back against Kerberoasting AD attacks
Cybersecurity researchers from Microsoft have warned the effectiveness of a cyberattack method called Kerberoasting is growing. To help businesses engage their defenses against this attack, the company published a new blog, explaining the methodology, the risks involved, and protection guidance. According to Microsoft, the technique has grown more effective lately…
Read More
TechRadar’s top VPN now supports next-generation Snapdragon PCs
TechRadar’s tried and tested best VPN service has just unveiled support for next-generation Windows devices. Today (October 15, 2024), NordVPN released a Windows VPN app fully compatible with Surface Pro and other PCs built on ARM architecture. This release complements the provider’s existing support for ARM-based devices on macOS and…
Read More
Top sports tech firm leaked data – and even professional athletes could be affected
Sports analytics technology company TrackMan was unknowingly exposing sensitive customer data, researchers have warned. Jeremiah Fowler, a security analyst known for tracking down unprotected databases, revealed new findings he determined belonged to TrackMan. The database did not have a password, and contained 31,602,260 records – for a total of 110…
Read More
OpenAI says it shuts down multiple campaigns using its systems for cybercrime
OpenAI, the company behind the famed Chat-GPT generative Artificial Intelligence (AI) solution, says it has recently blocked multiple malicious campaigns abusing its services. In a report, the company said it blocked more than 20 operations and deceptive networks around the world in 2024 so far. These operations varied in nature,…
Read More
Fidelity data breach exposes details of thousands of customers
Asset management powerhouse Fidelity Investments has confirmed suffering a data breach in which crooks stole sensitive information on tens of thousands of people. The company revealed the news via a breach notification filed with the Office of the Maine Attorney General, noting between August 17 and 19 2024, threat actors…
Read More