Security News

In the field of threat intelligence there are specific ways in which AI tools are showing huge promise for cybersecurity teams, including in lifting the lid on dark web threats. There is a role for AI in gathering data from the dark web, applying structure to it, and ultimately turning it into intelligence that organizations can use to inform their security strategy.

In this Help Net Security interview, Chaim Mazal, Chief Security Officer at Gigamon, discusses cybersecurity preparedness measures for businesses, the impact of international inconsistencies on global operations, and the board's role in cybersecurity. Practicing defence in depth through layered security monitoring and tooling can prepare organisations to detect suspicious behaviour within a system and react fast, before threat actors can access the most sensitive data and operations.

GitLab has shipped another round of updates to close out security flaws in its software development platform, including a critical bug that allows an attacker to run pipeline jobs as an arbitrary user. "An issue was discovered in GitLab CE/EE affecting versions 15.8 prior to 16.11.6, 17.0 prior to 17.0.4, and 17.1 prior to 17.1.2, which allows an attacker to trigger a pipeline as another user under certain circumstances," the company said in a Wednesday advisory.

The attackers create phishing emails and fraudulent duplicate websites to steal usernames and passwords from hotel staff. Booking.com suggests using MFA to prevent such attacks, but it isn't enough.

Improving OT cybersecurity remains a work in progress. Most cybersecurity pros took time off due to mental health issues.

Over the last month, Microsoft 365 and Microsoft Office users have been experiencing "30088-27" errors when attempting to update the application. Based on widespread user reports, the update problems plague Microsoft 365 users and those who use Click-To-Run versions of Office 2016, 2019, and 2021.

Cisco Talos analyzed the top 14 ransomware groups between 2023 and 2024 to expose their attack chain and highlight interesting Tactics,Techniques and Protocols. The security company also exposed the most leveraged vulnerabilities being triggered by ransomware actors.

The seemingly legitimate online marketplace Huione Guarantee is being used as a platform for laundering money from online scams, especially "Pig butchering" investment fraud, researchers say. According to a report from Elliptic blockchain analytics firm, the merchants on Huine Guarantee have made transactions of at least $11 billion of transactions, some of them linked to various types of cybercrime, including creating websites for investment fraud, personal data sales, and money laundering.

GitLab warned today that a critical vulnerability in its product's GitLab Community and Enterprise editions allows attackers to run pipeline jobs as any other user. Under certain circumstances that GitLab has yet to disclose, attackers can exploit it to trigger a new pipeline as an arbitrary user.

The latest variants of the ViperSoftX info-stealing malware use the common language runtime (CLR) to load and execute PowerShell commands within AutoIt scripts to evade detection. [...]