Security News > 2024
Cybersecurity researchers have identified a new attack that exploits misconfigurations in Apache Hadoop and Flink to deploy cryptocurrency miners within targeted environments. "This attack is...
CES Despite all the buzz around internet-connected smart cars at this year's CES in Las Vegas, most folks don't want vehicle manufacturers sharing their personal data with third parties - and even say they'd consider buying an older or dumber car to protect their privacy and security. According to a survey of 2,000 Americans conducted by Kaspersky in November and published this week, 72 percent of drivers are uncomfortable with automakers sharing their data with advertisers, insurance companies, subscription services, and other third-party outfits.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security vulnerability impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV)...
As we reflect on the cybersecurity landscape and the trajectories of threat vectors, it's evident that we're on the cusp of a paradigm shift in cloud security. It's a reminder that even with advancements in cloud security, fundamental principles like IAM can't be overlooked.
The U.S. will be in a recession by Q4 2024, and tech companies will continue reducing their workforce. Still, VCs will be able to capitalize on these economic conditions, which create an opportunity for investment as prices remain depressed despite the immense technical talent in the market looking to create the next generation of disruptive companies.
The failure of LLMs to live up to their hype will be the story of 2024, as generic models become relegated to consumer-centric applications and enterprise users turn to smaller, more targeted AI models, purpose-built to meet their business needs. Recognizing the value of the data they hold, companies will seek to secure it by taking a "Hybrid cloud by design" approach, rather than "Hybrid cloud by default." Ultimately, data protection will emerge as a key pillar in a successful AI strategy, and companies will move towards prioritizing AI solutions that are trustworthy and responsible.
A major T-Mobile outage is preventing customers from logging into their accounts and using the company's mobile app. T-Mobile users trying to access their accounts receive an error warning that the mobile carrier's website has been "Unplugged."
Framework Computer disclosed a data breach exposing the personal information of an undisclosed number of customers after Keating Consulting Group, its accounting service provider, fell victim to a...
Under the agreement [PDF], eBay admits responsibility for the actions of six of its former employees, and a contractor, all of whom previously pleaded guilty to physically and electronically harassing Ina and David Steiner. Ina and David Steiner in 1999 co-founded EcommerceBytes, a website and newsletter that reports on and scrutinizes ecommerce companies, including eBay.
Two vulnerabilities impacting the POST SMTP Mailer WordPress plugin, an email delivery tool used by 300,000 websites, could help attackers take complete control of a site authentication. Based on statitics from wordpress.org, there are roughly 150,000 sites that run a vulnerable version of the plugin that is lower than 2.8.