+84949482065
The US Office of Management and Budget (OMB) has published AI risk mitigation rules for all federal agencies. The agencies will have until December 1, 2024, to implement “new agency…
NVIDIA has released fixes for two vulnerabilities in their recently-released ChatRTX for Windows app. One of the vulnerabilities (CVE-2024-0082) is a high-severity flaw that could lead to privilege elevation, information…
Researchers at Oligo have detected a cyberattack campaign that is exploiting a vulnerability in the Ray open-source AI framework. The campaign has been operating for seven months. The vulnerability that…
Threat actors have been using a recently released network mapping tool for malicious purposes. “SSH-Snake is a self-modifying worm that leverages SSH credentials discovered on a compromised system to start…
Change Healthcare is experiencing network disruptions following a cyberattack. Once the organization learned of the incident, they disconnected their systems to prevent any additional damage. The outage has impeded prescription…
Researchers from Germany’s National Research Center for Applied Cybersecurity ATHENE have found a critical vulnerability in the design of DNSSEC. Dubbed KeyTrap, the vulnerability means that “with just a single…
Researchers at Belgian University KU Leuven working with Top10VPN have discovered two authentication bypass vulnerabilities that weaken Wi-Fi Security. The flaws affect wpa_supplicant (CVE-2023-52160) and Intel’s iNet Wireless Daemon (IWD)…
US government officials have disrupted a botnet believed to have been used by Russian state-sponsored threat actors to launch spearphishing and credential theft attacks. The botnet of hundreds of small…
Juniper has released an out-of-cycle advisory assigning CVEs to vulnerabilities that had previously been patched in an earlier security release without specific CVEs. The vulnerabilities, three missing authentication vulnerabilities and…
According to data collected by the Shadowserver Foundation, there are still at least 45,000 public-facing Jenkins servers that have not been patched against a known critical vulnerability. The flaw, which…
