Evidence shows CISO is being wrongly implicated, ET CISO Star Health Insurance did suffer a data breach incident – a massive one, in fact, there’s no refuting that. However, allegations made by the threat actor implicating the company’s CISO, Amarjeet Khanuja, are rife with inconsistencies and anyone with a slim understanding of how enterprise security works can spot holes in ...
Read More »Author Archives: firewallfirmadmin
New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution
New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution https://firewall.firm.in/wp-content/uploads/2024/10/gitlab.png Oct 11, 2024Ravie LakshmananDevOps / Vulnerability GitLab has released security updates for Community Edition (CE) and Enterprise Edition (EE) to address eight security flaws, including a critical bug that could allow running Continuous Integration and Continuous Delivery (CI/CD) pipelines on arbitrary branches. Tracked as CVE-2024-9164, the vulnerability carries a ...
Read More »Government issues ‘high risk’ warning for Microsoft Windows users – ET CISO
Government issues ‘high risk’ warning for Microsoft Windows users – ET CISO https://etimg.etb2bimg.com/thumb/msid-114138621,imgsize-37016,width-1200,height=765,overlay-etciso/grc/government-issues-high-risk-warning-for-microsoft-windows-users.jpg The Indian Computer Emergency Response Team (CERT-In) has issued an advisory for Microsoft Windows users. The cyber security under the aegis of Ministry of Electronics and Information Technology said that it has discovered multiple vulnerabilities in Microsoft products including Microsoft Windows, Microsoft Office, Microsoft Azure, Developer Tools, ...
Read More »OpenAI Blocks 20 Global Malicious Campaigns Using AI for Cybercrime and Disinformation
OpenAI Blocks 20 Global Malicious Campaigns Using AI for Cybercrime and Disinformation https://firewall.firm.in/wp-content/uploads/2024/10/ai-content.png Oct 10, 2024Ravie LakshmananCybercrime / Disinformation OpenAI on Wednesday said it has disrupted more than 20 operations and deceptive networks across the world that attempted to use its platform for malicious purposes since the start of the year. This activity encompassed debugging malware, writing articles for websites, ...
Read More »Thales to provide smart digital platform to improve security at Adani airports – ET CISO
Thales to provide smart digital platform to improve security at Adani airports – ET CISO https://etimg.etb2bimg.com/thumb/msid-114107807,imgsize-16562,width-1200,height=765,overlay-etciso/ot-security/thales-to-provide-smart-digital-platform-to-improve-security-at-adani-airports.jpg European major Thales will deploy a smart digital platform at seven airports operated by the Adani Group that will centrally host all the necessary applications to improve overall airport management, security and passenger experience. Thales and Adani Airport Holdings Ltd have announced a strategic ...
Read More »Cybercriminals Use Unicode to Hide Mongolian Skimmer in E-Commerce Platforms
Cybercriminals Use Unicode to Hide Mongolian Skimmer in E-Commerce Platforms https://firewall.firm.in/wp-content/uploads/2024/10/shopping.png Oct 10, 2024Ravie LakshmananCybercrime / Malware Cybersecurity researchers have shed light on a new digital skimmer campaign that leverages Unicode obfuscation techniques to conceal a skimmer dubbed Mongolian Skimmer. “At first glance, the thing that stood out was the script’s obfuscation, which seemed a bit bizarre because of all ...
Read More »OpenAI sees increasing use of its AI models for influencing elections – ET CISO
OpenAI sees increasing use of its AI models for influencing elections – ET CISO https://etimg.etb2bimg.com/thumb/msid-114107905,imgsize-22566,width-1200,height=765,overlay-etciso/ot-security/openai-sees-increasing-use-of-its-ai-models-for-influencing-elections.jpg – OpenAI has seen a number of attempts where its AI models have been used to generate fake content, including long-form articles and social media comments, aimed at influencing elections, the ChatGPT maker said in a report on Wednesday. Cybercriminals are increasingly using AI tools, ...
Read More »Strategies for remediating supply chain attacks, ET CISO
Strategies for remediating supply chain attacks, ET CISO In a world where code is the new currency, supply chain attacks are the heist of the digital age. Recent findings reveal a chilling trend: as open-source repositories become the playground for cybercriminals, the lack of oversight makes them particularly inviting targets. According to the 2024 Reversing Labs report, we witnessed a ...
Read More »N. Korean Hackers Use Fake Interviews to Infect Developers with Cross-Platform Malware
N. Korean Hackers Use Fake Interviews to Infect Developers with Cross-Platform Malware https://firewall.firm.in/wp-content/uploads/2024/10/attack.png Oct 09, 2024Ravie LakshmananPhishing Attack / Malware Threat actors with ties to North Korea have been observed targeting job seekers in the tech industry to deliver updated versions of known malware families tracked as BeaverTail and InvisibleFerret. The activity cluster, tracked as CL-STA-0240, is part of a ...
Read More »Scientists sound AI alarm after winning physics Nobel – ET CISO
Scientists sound AI alarm after winning physics Nobel – ET CISO https://etimg.etb2bimg.com/thumb/msid-114069094,imgsize-43982,width-1200,height=765,overlay-etciso/next-gen-tech/scientists-sound-ai-alarm-after-winning-physics-nobel.jpg American Geoffrey Hinton and British-Canadian John Hopfield won the Nobel physics prize on Tuesday for their pioneering work on the foundations of artificial intelligence, with both sounding the alarm over the technology they helped bring to life. The pair’s research on neural networks in the 1980s paved the ...
Read More »