π¦Ώ OpenAI, Anthropic Research Reveals More About How LLMs Affect Security and Bias π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Anthropic opened a window into the black box where features steer a large language models output. OpenAI dug into the same concept two weeks later with a deep dive into sparse autoencoders.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
OpenAI, Anthropic AI Research Reveals More About How LLMs Affect Security and Bias
Anthropic opened a window into the βblack boxβ where βfeaturesβ steer a large language modelβs output. OpenAI dug into the same concept two weeks later with a deep dive into sparse autoencoders.
π 560 million Ticketmaster customer data for sale? β Week in security with Tony Anscombe π
π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
Ticketmaster seems to have experienced a data breach, with the ShinyHunters hacker group claiming to have exfiltrated 560 million customer data. Watch as Tony discusses the story and provides useful tips on how to protect people's data.π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
Welivesecurity
560 million Ticketmaster customer data for sale? β Week in security with Tony Anscombe
Ticketmaster has been breached by the ShinyHunters hacker group, who claim to have stolen 560 million customer credentials, demanding a $500,000 ransom to not sell the data on the dark web.
β€1
ποΈ Microsoft Revamps Controversial AI-Powered Recall Feature Amid Privacy Concerns ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Microsoft on Friday said it will disable its muchcriticized artificial intelligence AIpowered Recall feature by default and make it an optin. Recall, currently in preview and coming exclusively to Copilot PCs on June 18, 2024, functions as an "explorable visual timeline" by capturing screenshots of what appears on users' screens every five seconds, which are subsequently analyzed and.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ New PHP Vulnerability Exposes Windows Servers to Remote Code Execution ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Details have emerged about a new critical security flaw impacting PHP that could be exploited to achieve remote code execution under certain circumstances. The vulnerability, tracked as CVE20244577, has been described as a CGI argument injection vulnerability affecting all versions of PHP installed on the Windows operating system. According to DEVCORE security researcher, the shortcoming makes.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
β€2π₯°1
π΅οΈββοΈ Governments, Businesses Tighten Cybersecurity Around Hajj Season π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
While cyberattacks drop slightly during the week of the Islamic pilgrimage, organizations in Saudi Arabia and other countries with large Muslim populations see attacks on the rise.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Governments, Businesses Tighten Cybersecurity Around Hajj Season
While cyberattacks drop slightly during the week of the Islamic pilgrimage, organizations in Saudi Arabia and other countries with large Muslim populations see attacks rise.
ποΈ Sticky Werewolf Expands Cyber Attack Targets in Russia and Belarus ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have disclosed details of a threat actor known as Sticky Werewolf that has been linked to cyber attacks targeting entities in Russia and Belarus. The phishing attacks were aimed at a pharmaceutical company, a Russian research institute dealing with microbiology and vaccine development, and the aviation sector, expanding beyond their initial focus of government.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π’ A lifeline for LockBit victims? The FBI now has 7,000 decryption keys available β and itβs urging affected organizations to come forward π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The FBI has has more than 7,000 LockBit decryption keys available and has put out a call for affected organizations to come forward.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
A lifeline for LockBit victims? The FBI now has 7,000 decryption keys available β and itβs urging affected organizations to comeβ¦
The FBI has has more than 7,000 LockBit decryption keys available and has put out a call for affected organizations to come forward
π¦Ώ How Your Business Can Benefit from a Network Security Policy π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
A companys network must be secured to ensure the safety of its data against the risks of cyberthreats.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
How Your Business Can Benefit from a Network Security Policy
A companyβs network must be secured to ensure the safety of its data against the risks of cyberthreats.
π NHS Appeals For Blood and Volunteers After Cyber-Attack π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
London hospitals continue to suffer the aftereffects of a major ransomware attack last week.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
NHS Appeals For Blood and Volunteers After Cyber-Attack
London hospitals continue to suffer the after-effects of a major ransomware attack last week
π Threat Actor Claims to Leak 270GB of New York Times Data π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
An anonymous 4Chan user is claiming to have shared a trove of source code stolen from the New York Times.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Threat Actor Claims to Leak 270GB of New York Times Data
An anonymous 4Chan user is claiming to have shared a trove of source code stolen from the New York Times
π’ Avast Business Security review: Strong, affordable protection for smaller businesses π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
With an excellent antivirus engine and easy management, Avast Business Security is a great solution for SMBs wanting to shore up and centralize their protection.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Avast Business Security review: Strong, affordable protection for smaller businesses
With an excellent antivirus engine and easy management, Avast Business Security is a great solution for SMBs wanting to shore up and centralize their protection
π’ Microsoft backtracks on Windows Recall feature amid industry outcry π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Windows Recall has been met with hefty criticism since first being announced, forcing Microsoft to act.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Microsoft backtracks on Windows Recall feature amid industry outcry
Windows Recall has been met with hefty criticism since first being announced, forcing Microsoft to act
ποΈ Cybersecurity CPEs: Unraveling the What, Why & How ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Staying Sharp Cybersecurity CPEs Explained Perhaps even more so than in other professional domains, cybersecurity professionals constantly face new threats. To ensure you stay on top of your game, many certification programs require earning Continuing Professional Education CPE credits. CPEs are essentially units of measurement used to quantify the time and effort professionals spend on.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Azure Service Tags Vulnerability: Microsoft Warns of Potential Abuse by Hackers ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Microsoft is warning about the potential abuse of Azure Service Tags by malicious actors to forge requests from a trusted service and get around firewall rules, thereby allowing them to gain unauthorized access to cloud resources. "This case does highlight an inherent risk in using service tags as a single mechanism for vetting incoming network traffic," the Microsoft Security Response Center .π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Google Takes Down Influence Campaigns Tied to China, Indonesia, and Russia ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Google has revealed that it took down 1,320 YouTube channels and 1,177 Blogger blogs as part of a coordinated influence operation connected to the Peoples Republic of China PRC. "The coordinated inauthentic network uploaded content in Chinese and English about China and U.S. foreign affairs," Google Threat Analysis Group TAG researcher Billy Leonard said in the company's quarterly bulletin.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π IoT Vulnerabilities Skyrocket, Becoming Key Entry Point for Attackers π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A new Forescout report found that IoT devices containing vulnerabilities surged 136 compared to a year ago, becoming a key focus for attackers.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
IoT Vulnerabilities Skyrocket, Becoming Key Entry Point for Attackers
A new Forescout report found that IoT devices containing vulnerabilities surged 136% compared to a year ago, becoming a key focus for attackers
π¦
Vietnamese Entities Targeted by China-Linked Mustang Panda in Cyber Espionage π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Key Takeaways Cyble Research and Intelligence Labs CRIL recently came across a campaign employing Windows shortcut LNK files associated with the Mustang Panda APT group. Mustang Panda, with its Chinese affiliation, suggests potential statesponsored or stateaffiliated cyber espionage activities targeting government organizations, nonprofits, religious institutions, and other NGOs across the U.S., Europe, Mongolia, Myanmar, Pakistan, Vietnam, and various other regions. The two campaigns we analyzed are aimed at Vietnam, using lures related to Tax Compliance and the education sector. The campaign employs sophisticated stages, abusing legitimate tools like forfiles.exe to execute malicious HTA files hosted on remote servers. Additionally, it incorporates PowerShell, VBScript,...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Vietnamese Entities Targeted By Chinaβs Mustang Panda
Discover how the Mustang Panda APT group targets entities using sophisticated malware, including LNK files and DLL sideloading, in recent campaigns.
π¦Ώ Crowdstrike vs Trellix (2024): What Are The Main Differences? π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Endpoint detection and response software protects against a variety of threats and attacks. Learn about two of the most popular EDR options, CrowdStrike and McAfee, and how to protect your network.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
CrowdStrike vs Trellix (2024): What Are The Main Differences?
Compare the features of two of the most popular EDR software options, CrowdStrike and Trellix, to choose the best option for you.
π American Fuzzy Lop plus plus 4.21c π
π Read more.
π Via "Packet Storm - Tools"
----------
ποΈ Seen on @cibsecurity
Google's American Fuzzy Lop is a bruteforce fuzzer coupled with an exceedingly simple but rocksolid instrumentationguided genetic algorithm. afl is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.π Read more.
π Via "Packet Storm - Tools"
----------
ποΈ Seen on @cibsecurity
Packetstormsecurity
American Fuzzy Lop plus plus 4.21c β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
π΅οΈββοΈ Making Choices for Stronger Vulnerability Management π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The threat environment will continue to grow in complexity. Now is the time for organizations to streamline how they manage and mitigate overlooked vulnerabilities.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Making Choices that Lead to Stronger Vulnerability Management
The threat environment will continue to grow in complexity. Organizations need to streamline how they manage and mitigate overlooked vulnerabilities.
π΅οΈββοΈ Is a US Nationwide Privacy Law Really Coming? π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
If passed, APRA will be a giant leap forward for the rights and freedoms of Americans.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Is a US Nationwide Privacy Law Really Coming?
If passed, APRA will be a giant leap forward for the rights and freedoms of Americans.