π Subaru Bug Enabled Remote Vehicle Tracking and Hijacking π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A nowpatched vulnerability could have enabled threat actors to remotely control Subaru cars.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Subaru Bug Enabled Remote Vehicle Tracking and Hijacking
A now-patched vulnerability could have enabled threat actors to remotely control Subaru cars
π’ UnitedHealth reveals 190 million US citizens were impacted by the Change Healthcare breach π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
UnitedHealth has confirmed that 190 million US citizens were affected by the Change Healthcare cyber attack in 2024.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
UnitedHealth reveals 190 million US citizens were impacted by the Change Healthcare breach
Experts said the Change Healthcare breach should serve as a warning to other firms that think paying the ransom is a guaranteed fix
π’ Developers can't get a handle on application security risks π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Research by Legit Security shows a majority of organizations have high risk applications in developer environments.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Developers can't get a handle on application security risks
A Legit Security report found critical risks across every company it looked at
π¦Ώ 1Password Review: Features, Pricing & Security π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
1Passwords toptier security and sleek user interface make it a solid password manager to try this year. Read our handson 1Password review to learn more.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
1Password Review: Features, Pricing & Security
Discover the features and benefits of 1Password in our detailed review. Find out if it's right for you today.
ποΈ β‘ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [27 January] ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Welcome to your weekly cybersecurity scoop! Ever thought about how the same AI meant to protect our hospitals could also compromise them? This week, were breaking down the sophisticated world of AIdriven threats, key updates in regulations, and some urgent vulnerabilities in healthcare tech that need our attention. As we unpack these complex topics, we'll equip you with sharp insights to.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Do We Really Need The OWASP NHI Top 10? ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The Open Web Application Security Project has recently introduced a new Top 10 project the NonHuman Identity NHI Top 10. For years, OWASP has provided security professionals and developers with essential guidance and actionable frameworks through its Top 10 projects, including the widely used API and Web Application security lists. Nonhuman identity security represents an emerging.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π CISOs Boost Crisis Simulation Budgets Amid High-Profile Cyber-Attacks π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
74 of CISOs plan to increase their cyber crisis simulation budgets in 2025.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
CISOs Boost Crisis Simulation Budgets Amid High-Profile Cyber-Attacks
74% of CISOs plan to increase their cyber crisis simulation budgets in 2025
π¦
United Against Cybercrime: ASEAN Ministers Forge New Security Pathways π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Overview The digital world in Southeast Asia is evolving rapidly, with nations striving to balance innovation, inclusivity, and security. The recently held 5th ASEAN Digital Ministers' Meeting ADGMIN in Bangkok, Thailand, marked a significant milestone in this journey. The meeting highlighted the importance of cybersecurity in shaping a resilient digital future for the region. The ASEAN Digital Masterplan 2025 ADM 2025 continues to serve as a guiding framework for fostering collaboration, enabling trust in digital services, and promoting the safe and inclusive use of technology. From addressing online scams to operationalizing the ASEAN Regional Computer Emergency Response Team CERT and advancing AI governance, the event showcased ASEAN's commitment to fortifying its digital eco...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
ASEAN Unites Against Cybercrime: New Security Pathways
ASEAN strengthens cybersecurity with AI governance, anti-online scam strategies, and cross-border data protectionβbuilding a secure, resilient digital future.
π New Phishing Campaign Targets Mobile Devices with Malicious PDFs π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A novel phishing campaign identified by Zimperium targets mobile users with malicious PDFs, impersonating USPS to steal credentials.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
New Phishing Campaign Targets Mobile Devices with Malicious PDFs
A novel phishing campaign identified by Zimperium targets mobile users with malicious PDFs, impersonating USPS to steal credentials
π SaaS Breaches Skyrocket 300% as Traditional Defenses Fall Short π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Obsidian found that threat actors are focusing on SaaS applications to steal sensitive data, with most organizations' security measures not set up to deal with these attacks.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
SaaS Breaches Skyrocket 300% as Traditional Defenses Fall Short
Obsidian found that threat actors are focusing on SaaS applications to steal sensitive data, with most organizations' security measures not set up to deal with these attacks
π΅οΈββοΈ The Case for Proactive, Scalable Data Protection π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Whether you're facing growing data demands and increased cyber threats, or simply looking to futureproof your business, it's time to consider the longterm benefits of transitioning to a cloudfirst infrastructure.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
The Case for Proactive, Scalable Data Protection
Whether you're facing growing data demands and increased cyber threats, or simply looking to future-proof your business, it's time to consider the long-term benefits of transitioning to a cloud-first infrastructure.
π§ How secure are green data centers? Consider these 5 trends π§
π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
As organizations increasingly measure environmental impact towards their sustainability goals, many are focusing on their data centers. KPMG found that the majority of the top 100 companies measure and report on their sustainability efforts. Because data centers consume a large amount of energy, Gartner predicts that by 2027, three in four organizations will have implemented The post How secure are green data centers? Consider these 5 trends appeared first on Security Intelligence.π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
Security Intelligence
How secure are green data centers? Consider these 5 trends
Green data centers are a great way for organizations to embrace sustainability. However, these centers also come with some unique risks.
ποΈ GitHub Desktop Vulnerability Risks Credential Leaks via Malicious Remote URLs ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Multiple security vulnerabilities have been disclosed in GitHub Desktop as well as other Gitrelated projects that, if successfully exploited, could permit an attacker to gain unauthorized access to a user's Git credentials. "Git implements a protocol called Git Credential Protocol to retrieve credentials from the credential helper," GMO Flatt Security researcher Ry0taK, who discovered the flaws.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Hidden Text Salting Disrupts Brand Name Detection Systems π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A new phishing tactic has been identified by Cisco Talos, using hidden text salting to evade email security measures.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Hidden Text Salting Disrupts Brand Name Detection Systems
A new phishing tactic has been identified by Cisco Talos, using hidden text salting to evade email security measures
π Customer Success Manager π
π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
The post Customer Success Manager appeared first on UnderDefense.π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
UnderDefense
Customer Success Manager - UnderDefense
π¦
IT Vulnerability Report: 7-Zip, Windows and Fortinet Fixes Urged by Cyble π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Overview Cybles vulnerability intelligence report to clients last week examined highrisk flaws in 7Zip, Microsoft Windows, and Fortinet, among other products. It also examined dark web claims of a zeroday vulnerability in Apple iOS. In all, the report from Cyble Research and Intelligence Labs CRIL looked at 14 vulnerabilities and dark web exploits, including one vulnerability with a maximum CVSS severity score of 10.0 and another with more than 276,000 web exposures. Here are some of the vulnerabilities highlighted by Cybles vulnerability intelligence unit as meriting highpriority attention by security teams. The Top IT Vulnerabilities CVE202450603 is a 10.0severity OS Command Injection vulnerability in the Aviatrix Controller that could allow an unauthenticated user to ...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
IT Vulnerability Report: 7-Zip, Windows & Fortinet Fixes
Cybleβs IT vulnerability report exposes high-risk flaws, dark web exploits, and Apple iOS zero-day threats. Stay aheadβread now!
π1
π΅οΈββοΈ Crisis Simulations: A Top 2025 Concern for CISOs π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
CISOs are planning to adjust their budgets this year to reflect their growing concerns for cybersecurity preparedness in the event of a cyberattack.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Crisis Simulations: A Top 2025 Concern for CISOs
CISOs are planning to adjust their budgets this year to reflect their growing concerns for cybersecurity preparedness in the event of a cyberattack.
πͺ Privacy-Preserving Federated Learning β Future Collaboration and Continued Research πͺ
π Read more.
π Via "NIST"
----------
ποΈ Seen on @cibsecurity
This post is the final blog in a series on privacypreserving federated learning . The series is a collaboration between NIST and the UK governments Responsible Technology Adoption Unit RTA, previously known as the Centre for Data Ethics and Innovation. Learn more and read all the posts published to date at NISTs Privacy Engineering Collaboration Space or RTAs blog . Reflections and Wider Considerations This is the final post in the series that began with reflections and learnings from the first USUK collaboration working with Privacy Enhancing Technologies PETs. Since the PETs Prize.π Read more.
π Via "NIST"
----------
ποΈ Seen on @cibsecurity
NIST
Privacy-Preserving Federated Learning β Future Collaboration and Continued Research
This post is the final blog in a
π€1
π΅οΈββοΈ For $50, Cyberattackers Can Use GhostGPT to Write Malicious Code π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Malware writing is only one of several malicious activities for which the new, uncensored generative AI chatbot can be used.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
For $50, Attackers Can Use GhostGPT to Write Malicious Code
Malware writing is only one of several malicious activities for which the new, uncensored generative AI chatbot can be used.
π΅οΈββοΈ Apple Patches Actively Exploited Zero-Day Vulnerability π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The Apple iOS 18.3 update fixes 28 other vulnerabilities identified by the tech company, though there is little information on them.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Apple Patches Actively Exploited Zero-Day Vuln
The Apple iOS 18.3 update fixes 28 other vulnerabilities identified by the tech company, though there is little information on them.
π΅οΈββοΈ Change Healthcare Breach Impact Doubles to 190M People π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
One of the largest data breaches in history was apparently twice as impactful as previously thought, with PII belonging to hundreds of millions of people sitting in the hands of cybercriminals.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Change Healthcare Breach Impact Doubles to 190M People
One of the largest data breaches in history was apparently twice as impactful as previously thought, with PII belonging to hundreds of millions of people sitting in the hands of cybercriminals.
π1