This new malware on Android can bypass security to steal data, ET CISO A new Android malware called Snowblind has emerged and it’s using a clever trick to bypass security. Named Snowblind, this malware exploits a feature meant to protect users – a security check called “seccomp” – to hide its tampering with legitimate apps. Snowblind “repackages” these apps, making ...

GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others https://firewall.firm.in/wp-content/uploads/2024/07/gitlab.jpg Jun 28, 2024NewsroomSoftware Security / DevOps GitLab has released security updates to address 14 security flaws, including one critical vulnerability that could be exploited to run continuous integration and continuous deployment (CI/CD) pipelines as any user. The weaknesses, which affect GitLab Community Edition (CE) and Enterprise Edition (EE), ...

HubSpot investigating customer account hacks – ET CISO https://etimg.etb2bimg.com/thumb/msid-111356251,imgsize-2403626,width-1200,height=765,overlay-etciso/cybercrime-fraud/hubspot-investigating-customer-account-hacks.jpg AI generated image Software firm HubSpot said on Friday it is investigating a cybersecurity incident that targeted its customers. “On June 22, we identified a security incident that involved bad actors targeting a limited number of HubSpot customers and attempting to gain unauthorized access to their accounts,” a HubSpot spokesperson told ...

ETCISO Decrypt 2024 explores intersection of AI and cybersecurity, ET CISO Decrypt 2024, hosted by ETCISO, convened India’s foremost cybersecurity experts to address the complexities introduced by emerging technologies, particularly artificial intelligence (AI). The conference was a response to the alarming findings of the World Economic Forum’s Global Cybersecurity Outlook 2024, which noted a significant decline in organizations maintaining minimal ...

Kimsuky Using TRANSLATEXT Chrome Extension to Steal Sensitive Data https://firewall.firm.in/wp-content/uploads/2024/06/north.png Jun 28, 2024NewsroomCyber Espionage / Cyber Attack The North Korea-linked threat actor known as Kimsuky has been linked to the use of a new malicious Google Chrome extension that’s designed to steal sensitive information as part of an ongoing intelligence collection effort. Zscaler ThreatLabz, which observed the activity in early ...

AI deals between Microsoft and OpenAI, Google and Samsung, in EU crosshairs – ET CISO https://etimg.etb2bimg.com/thumb/msid-111356320,imgsize-105176,width-1200,height=765,overlay-etciso/corporate/ai-deals-between-microsoft-and-openai-google-and-samsung-in-eu-crosshairs.jpg Microsoft’s partnership with OpenAI could face an EU antitrust investigation as regulators singled out their exclusivity clauses while Google’s artificial intelligence deal with Samsung also triggered scrutiny. EU antitrust regulators will seek additional third-party views, EU competition chief Margrethe Vestager said on Friday. The ...

Banks told to stay vigilant amid intel on cyberattack threat, ET CISO Banks across the country have been put on alert amid tip-offs received by the regulator on possible cyberattacks. They have been told to proactively monitor their systems for threat detection on a 24/7 basis. “In the light of credible threat intelligence received regarding potential cyberattacks, regulated entities are ...

Banks told to stay vigilant amid intel on cyberattack threat – ET CISO https://etimg.etb2bimg.com/thumb/msid-111356132,imgsize-28516,width-1200,height=765,overlay-etciso/cybercrime-fraud/banks-told-to-stay-vigilant-amid-intel-on-cyberattack-threat.jpg Banks across the country have been put on alert amid tip-offs received by the regulator on possible cyberattacks. They have been told to proactively monitor their systems for threat detection on a 24/7 basis. “In the light of credible threat intelligence received regarding potential cyberattacks, regulated ...

Google to Block Entrust Certificates in Chrome Starting November 2024 https://firewall.firm.in/wp-content/uploads/2024/06/dv.png Jun 29, 2024NewsroomCybersecurity / Website Security Google has announced that it’s going to start blocking websites that use certificates from Entrust starting around November 1, 2024, in its Chrome browser, citing compliance failures and the certificate authority’s inability to address security issues in a timely manner. “Over the past ...

2024 cybersecurity threats: AI-powered malware, deepfakes, and ransomware on the rise – ET CISO https://etimg.etb2bimg.com/thumb/msid-111330386,imgsize-86704,width-1200,height=765,overlay-etciso/cybercrime-fraud/2024-cybersecurity-threats-ai-powered-malware-deepfakes-and-ransomware-on-the-rise.jpg The cybersecurity provider, Quick Heal warns of a surge in sophisticated cyber threats in the first half of 2024. New malware leverages artificial intelligence (AI) and bypasses traditional defenses, while deepfakes pose significant misinformation risks. Quick Heal, drawing on data from Seqrite Labs identified these ...