Internet Archive reels from ‘catastrophic’ cyberattack, data breach – ET CISO https://etimg.etb2bimg.com/thumb/msid-114138588,imgsize-30230,width-1200,height=765,overlay-etciso/ot-security/internet-archive-reels-from-catastrophic-cyberattack-data-breach.jpg By Anuj Chopra Washington: The Internet Archive, an online repository of web pages, was offline Thursday after its founder confirmed a major cyberattack that exposed the data of millions of users and left the site defaced. The assault on the San Francisco-based nonprofit, claimed by a shadowy group ...

Evidence shows CISO is being wrongly implicated, ET CISO Star Health Insurance did suffer a data breach incident – a massive one, in fact, there’s no refuting that. However, allegations made by the threat actor implicating the company’s CISO, Amarjeet Khanuja, are rife with inconsistencies and anyone with a slim understanding of how enterprise security works can spot holes in ...

New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution https://firewall.firm.in/wp-content/uploads/2024/10/gitlab.png Oct 11, 2024Ravie LakshmananDevOps / Vulnerability GitLab has released security updates for Community Edition (CE) and Enterprise Edition (EE) to address eight security flaws, including a critical bug that could allow running Continuous Integration and Continuous Delivery (CI/CD) pipelines on arbitrary branches. Tracked as CVE-2024-9164, the vulnerability carries a ...

Government issues ‘high risk’ warning for Microsoft Windows users – ET CISO https://etimg.etb2bimg.com/thumb/msid-114138621,imgsize-37016,width-1200,height=765,overlay-etciso/grc/government-issues-high-risk-warning-for-microsoft-windows-users.jpg The Indian Computer Emergency Response Team (CERT-In) has issued an advisory for Microsoft Windows users. The cyber security under the aegis of Ministry of Electronics and Information Technology said that it has discovered multiple vulnerabilities in Microsoft products including Microsoft Windows, Microsoft Office, Microsoft Azure, Developer Tools, ...

OpenAI Blocks 20 Global Malicious Campaigns Using AI for Cybercrime and Disinformation https://firewall.firm.in/wp-content/uploads/2024/10/ai-content.png Oct 10, 2024Ravie LakshmananCybercrime / Disinformation OpenAI on Wednesday said it has disrupted more than 20 operations and deceptive networks across the world that attempted to use its platform for malicious purposes since the start of the year. This activity encompassed debugging malware, writing articles for websites, ...

Thales to provide smart digital platform to improve security at Adani airports – ET CISO https://etimg.etb2bimg.com/thumb/msid-114107807,imgsize-16562,width-1200,height=765,overlay-etciso/ot-security/thales-to-provide-smart-digital-platform-to-improve-security-at-adani-airports.jpg European major Thales will deploy a smart digital platform at seven airports operated by the Adani Group that will centrally host all the necessary applications to improve overall airport management, security and passenger experience. Thales and Adani Airport Holdings Ltd have announced a strategic ...

Cybercriminals Use Unicode to Hide Mongolian Skimmer in E-Commerce Platforms https://firewall.firm.in/wp-content/uploads/2024/10/shopping.png Oct 10, 2024Ravie LakshmananCybercrime / Malware Cybersecurity researchers have shed light on a new digital skimmer campaign that leverages Unicode obfuscation techniques to conceal a skimmer dubbed Mongolian Skimmer. “At first glance, the thing that stood out was the script’s obfuscation, which seemed a bit bizarre because of all ...

OpenAI sees increasing use of its AI models for influencing elections – ET CISO https://etimg.etb2bimg.com/thumb/msid-114107905,imgsize-22566,width-1200,height=765,overlay-etciso/ot-security/openai-sees-increasing-use-of-its-ai-models-for-influencing-elections.jpg – OpenAI has seen a number of attempts where its AI models have been used to generate fake content, including long-form articles and social media comments, aimed at influencing elections, the ChatGPT maker said in a report on Wednesday. Cybercriminals are increasingly using AI tools, ...

Strategies for remediating supply chain attacks, ET CISO In a world where code is the new currency, supply chain attacks are the heist of the digital age. Recent findings reveal a chilling trend: as open-source repositories become the playground for cybercriminals, the lack of oversight makes them particularly inviting targets. According to the 2024 Reversing Labs report, we witnessed a ...

N. Korean Hackers Use Fake Interviews to Infect Developers with Cross-Platform Malware https://firewall.firm.in/wp-content/uploads/2024/10/attack.png Oct 09, 2024Ravie LakshmananPhishing Attack / Malware Threat actors with ties to North Korea have been observed targeting job seekers in the tech industry to deliver updated versions of known malware families tracked as BeaverTail and InvisibleFerret. The activity cluster, tracked as CL-STA-0240, is part of a ...