Security News > 2024 > June

In this Help Net Security video round-up, security experts discuss various aspects of identity verification and security, including generative AI's impact, the state of identity fraud prevention, and the potential impact of identity challenges on the security sector. Complete videos Peter Violaris, Head of Legal, Compliance and Risk, EMEA for OCR Labs, discusses generative AI's impact on identity verification.

Brave browser experienced its most significant growth month ever in May 2024, now used by more than 78.95 million monthly users, up 7.3%. The privacy-focused web browser experienced substantial growth in Latin America, where the browser became one of the top apps in the Google Play Store in several countries. As Brave Search is the default search engine for Brave Browser, it also saw increased growth due to the additional users.

Further research into the VSCode Marketplace found thousands of extensions with millions of installs. Previous reports have highlighted gaps in VSCode's security, allowing extension and publisher impersonation and extensions that steal developer authentication tokens.

Further research into the VSCode Marketplace found thousands of extensions with millions of installs. Previous reports have highlighted gaps in VSCode's security, allowing extension and publisher impersonation and extensions that steal developer authentication tokens.

Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests. Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services, possible interests and personal aspects.

High-risk Atlassian Confluence RCE fixed, PoC availableIf you're self-hosting an Atlassian Confluence Server or Data Center installation, you should upgrade to the latest available version to fix a high-severity RCE flaw for which a PoC and technical details are already public. Kali Linux 2024.2 released: 18 new tools, countless updatesKali Linux 2024.2 is now available.

Internal source code and data belonging to The New York Times was leaked on the 4chan message board after being stolen from the company's GitHub repositories in January 2024, The Times confirmed to BleepingComputer. "Basically all source code belonging to The New York Times Company, 270GB," reads the 4chan forum post.

Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests. Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services, possible interests and personal aspects.

Hacktivists are conducting DDoS attacks on European political parties that represent and promote strategies opposing their interests, according to a report by Cloudflare. Cloudflare reports that it has mitigated at least three distributed denial of service attack waves on various election-related sites in the Netherlands, as well as several political parties.

Details have emerged about a new critical security flaw impacting PHP that could be exploited to achieve remote code execution under certain circumstances. The vulnerability, tracked as...