π¦Ώ Google Adds Gemini Pro API to AI Studio and Vertex AI π¦Ώ
π Read
via "Tech Republic".
Google also announced Duet AI for Developers and Duet AI in Security Operations, but neither uses Gemini yet.π Read
via "Tech Republic".
TechRepublic
Google Adds Gemini Pro API to AI Studio and Vertex AI | TechRepublic
Google also announced Duet AI for Developers and Duet AI in Security Operations, but neither uses Gemini yet.
β€1π1
π Faraday 5.0.0 π
π Read
via "Packet Storm Security".
Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.π Read
via "Packet Storm Security".
Packetstormsecurity
Faraday 5.0.0 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
βοΈ Ten Years Later, New Clues in the Target Breach βοΈ
π Read
via "Krebs on Security".
On Dec. 18, 2013, KrebsOnSecurity broke the news that U.S. retail giant Target was battling a wide-ranging computer intrusion that compromised more than 40 million customer payment cards over the previous month. The malware used in the Target breach included the text string "Rescator," which also was the handle chosen by the cybercriminal who was selling all of the cards stolen from Target customers. Ten years later, KrebsOnSecurity has uncovered new clues about the real-life identity of Rescator.π Read
via "Krebs on Security".
Krebs on Security
Ten Years Later, New Clues in the Target Breach
On Dec. 18, 2013, KrebsOnSecurity broke the news that U.S. retail giant Target was battling a wide-ranging computer intrusion that compromised more than 40 million customer payment cards over the previous month. The malware used in the Target breach includedβ¦
β€1
π American Fuzzy Lop plus plus 4.09c π
π Read
via "Packet Storm Security".
Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.π Read
via "Packet Storm Security".
Packetstormsecurity
American Fuzzy Lop plus plus 4.09c β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
π I2P 2.4.0 π
π Read
via "Packet Storm Security".
I2P is an anonymizing network, offering a simple layer that identity-sensitive applications can use to securely communicate. All data is wrapped with several layers of encryption, and the network is both distributed and dynamic, with no trusted parties. This is the source code release version.π Read
via "Packet Storm Security".
Packetstormsecurity
I2P 2.4.0 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
β€1
π¦Ώ 12 Essential Steps Mac Users Need To Take At Year End π¦Ώ
π Read
via "Tech Republic".
As the year comes to a close, Mac users should take these steps to ensure their device's security, performance and organization.π Read
via "Tech Republic".
TechRepublic
12 Essential Steps Mac Users Need To Take At Year End
As the year comes to a close, Mac users should take these steps to ensure their device's security, performance and organization.
π1
π¦Ώ What Australiaβs Digital ID Means to How Citizens Interact With Businesses Online π¦Ώ
π Read
via "Tech Republic".
Australia is about to get a national online ID system β the Digital ID β which promises to improve the security and privacy of data online. However, concerns among Australians persist.π Read
via "Tech Republic".
TechRepublic
What Australiaβs Digital ID Means to How Citizens Interact With Businesses Online
Australiaβs new national online ID system, the Digital ID, promises to improve online data security and privacy. However, concerns persist.
π€―1
βοΈ BlackCat Ransomware Raises Ante After FBI Disruption βοΈ
π Read
via "Krebs on Security".
The U.S. Federal Bureau of Investigation (FBI) disclosed today that it infiltrated the world's second most prolific ransomware gang, a Russia-based criminal group known as ALPHV and BlackCat. The FBI said it seized the gang's darknet website, and released a decryption tool that hundreds of victim companies can use to recover systems. Meanwhile, BlackCat responded by briefly "unseizing" its darknet site with a message promising 90 percent commissions for affiliates who continue to work with the crime group, and open season on everything from hospitals to nuclear power plants.π Read
via "Krebs on Security".
Krebs on Security
BlackCat Ransomware Raises Ante After FBI Disruption
The U.S. Federal Bureau of Investigation (FBI) disclosed today that it infiltrated the world's second most prolific ransomware gang, a Russia-based criminal group known as ALPHV and BlackCat. The FBI said it seized the gang's darknet website, and releasedβ¦
π1
π¦Ώ Top 7 Cybersecurity Threats for 2024 π¦Ώ
π Read
via "Tech Republic".
2024 will be a pivotal year for cybersecurity. The global threat landscape is undergoing deep transformations, driven by emerging technologies, new tactics and shifting geopolitical dynamics.π Read
via "Tech Republic".
TechRepublic
Top 7 Cybersecurity Threats for 2024
The global threat landscape is undergoing deep changes, driven by emerging technologies, new tactics and shifting geopolitical dynamics.
β€1π1
π¦Ώ Cyber Security Trends to Watch in Australia in 2024 π¦Ώ
π Read
via "Tech Republic".
Ransomware attacks on infrastructure and mid-market businesses are tipped to rise, while the use of AI cyber tools will grow as IT customers seek more signal and less noise from vendors.π Read
via "Tech Republic".
TechRepublic
Cyber Security Trends to Watch in Australia in 2024
Ransomware attacks on infrastructure and mid-market businesses are expected to increase, with a growing demand for AI cyber tools in 2024.
π2
π¦Ώ BlackCat Ransomware Site Seized in International Takedown Effort π¦Ώ
π Read
via "Tech Republic".
The ransomware group, which has distributed ransomware to more than 1,000 victims, reportedly recovered control of its website on Tuesday. Learn how to defend against ransomware.π Read
via "Tech Republic".
TechRepublic
BlackCat/ALPHV Ransomware Site Seized in International Takedown Effort | TechRepublic
The ransomware group, which has distributed ransomware to more than 1,000 victims, reportedly recovered control of its website on Tuesday. Learn how to defend against ransomware.
π1
π OpenSSH 9.6p1 π
π Read
via "Packet Storm Security".
This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.π Read
via "Packet Storm Security".
Packetstormsecurity
OpenSSH 9.6p1 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
π¦Ώ Third-Party Supply Chain Risk a Challenge for Cyber Security Professionals in Australia π¦Ώ
π Read
via "Tech Republic".
ASIC research shows 44% of Australian organisations are not managing third-party supply chain risk. Tesserent says it remains a key risk, and disruption could emerge from geopolitical tensions.π Read
via "Tech Republic".
TechRepublic
Third-Party Supply Chain Risk a Challenge for Cyber Security Pros in Australia
44% of Australian organisations are not managing third-party supply chain risk. Read our interview with Tesserent's CEO to learn more.
π¦Ώ Google Cloudβs Cybersecurity Predictions of 2024 and Look Back at 2023 π¦Ώ
π Read
via "Tech Republic".
Generative AI can be used by attackers, but security professionals shouldn't lose sleep over it, according to a Google Cloud threat intelligence analyst. Find out why.π Read
via "Tech Republic".
TechRepublic
Google Cloudβs Cybersecurity Predictions of 2024 and Look Back at 2023
Generative AI can be used by attackers, but security professionals shouldnβt lose sleep over it. Find out why.
π¦Ώ ESET Threat Report: ChatGPT Name Abuses, Lumma Stealer Malware Increases, Android SpinOk SDK Spywareβs Prevalence π¦Ώ
π Read
via "Tech Republic".
Risk mitigation tips are provided for each of these cybersecurity threats.π Read
via "Tech Republic".
TechRepublic
ESET Threat Report: ChatGPT Name Abuses, Lumma Stealer Malware Increases, Android SpinOk SDK Spywareβs Prevalence
ESET's latest report highlights the abuse of the ChatGPT name, the rise of the Lumma Stealer malware and the Android SpinOk SDK spyware.
ποΈ Microsoft Disables MSIX App Installer Protocol Widely Used in Malware Attacks ποΈ
π Read
via "The Hacker News".
Microsoft on Thursday said itβs once again disabling the ms-appinstaller protocol handler by default following its abuse by multiple threat actors to distribute malware.βThe observed threat actor activity abuses the current implementation of the ms-appinstaller protocol handler as an access vector for malware that may lead to ransomware distribution,β the Microsoft Threat Intelligenceπ Read
via "The Hacker News".
ποΈ CERT-UA Uncovers New Malware Wave Distributing OCEANMAP, MASEPIE, STEELHOOK ποΈ
π Read
via "The Hacker News".
The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new phishing campaign orchestrated by the Russia-linked APT28 group to deploy previously undocumented malware such as OCEANMAP, MASEPIE, and STEELHOOK to harvest sensitive information.The activity, which was detected by the agency between December 15 and 25, 2023, targets government entitiesπ Read
via "The Hacker News".
π΄ UAE Banks on AI to Boost Cybersecurity π΄
π Read
via "Dark Reading".
The federation has formed partnerships to aid its cybersecurity ambitions as well, but aging legacy systems and a talent gap leave the UAE vulnerable to cyber-risks. π Read
via "Dark Reading".
Darkreading
UAE Banks on AI to Boost Cybersecurity
The federation has formed partnerships to aid its cybersecurity ambitions as well, but aging legacy systems and a talent gap leave the UAE vulnerable to cyber risks.
π΄ I Securely Resolve: CISOs, IT Security Leaders Share 2024 Resolutions π΄
π Read
via "Dark Reading".
As cybersecurity leaders confront ever more complex challenges, the new year offers security leaders a chance to strategically reevaluate and plan for 2024.π Read
via "Dark Reading".
Darkreading
I Securely Resolve: CISOs, IT Security Leaders Share 2024 Resolutions
As cybersecurity leaders confront ever more complex challenges, the new year offers security leaders a chance to strategically reevaluate and plan for 2024.
ποΈ Albanian Parliament and One Albania Telecom Hit by Cyber Attacks ποΈ
π Read
via "The Hacker News".
The Assembly of the Republic of Albania and telecom company One Albania have been targeted by cyber attacks, the countryβs National Authority for Electronic Certification and Cyber Security (AKCESK) revealed this week.βThese infrastructures, under the legislation in force, are not currently classified as critical or important information infrastructure,β AKCESK said.One Albania, which hasπ Read
via "The Hacker News".
π±οΈ A year in review: 10 of the biggest security incidents of 2023 π±οΈ
π Read
via "WeLiveSecurity - ESET".
As we draw the curtain on another eventful year in cybersecurity, letβs review some of the high-profile cyber-incidents that occurred in 2023π Read
via "WeLiveSecurity - ESET".
Welivesecurity
A year in review: 10 of the biggest security incidents of 2023
As we draw the curtain on another eventful year in cybersecurity, letβs review some of the high-profile cyber-incidents that occurred this year3.