Protect Your Business From These Dangerous Data Breach Trends – ET CISO https://etimg.etb2bimg.com/thumb/msid-84786293,imgsize-4126751,width-1200,height=765,overlay-etciso/news/protect-your-business-from-these-dangerous-data-breach-trends.jpg 2020 was an unprecedented year in many ways, and data breaches were no exception. According to fraud detection vendor SpyCloud’s 2021 Annual Credential Exposure Report, there were 33% more breach sources in 2020 compared to 2019. Of those breaches, there were at least 1,486,416,779 stolen credentials in ...

Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks https://firewall.firm.in/wp-content/uploads/2024/05/hpe.png May 03, 2024NewsroomVulnerability / Software Security HPE Aruba Networking (formerly Aruba Networks) has released security updates to address critical flaws impacting ArubaOS that could result in remote code execution (RCE) on affected systems. Of the 10 security defects, four are rated critical in severity – CVE-2024-26304 (CVSS score: 9.8) ...

Government sounds alarm over Zip files – ET CISO https://etimg.etb2bimg.com/thumb/msid-109804788,imgsize-17868,width-1200,height=765,overlay-etciso/grc/government-sounds-alarm-over-zip-files.jpg Indian authorities have issued a caution to their personnel regarding a cyber threat group with ties to Pakistan. This group is exploiting a flaw in the WinRAR software to introduce trojans like AllaKore and Ares into government networks. WinRAR is commonly used for managing compressed files, it is a file ...

India’s comprehensive strategy against credit card fraud, ET CISO The year 2016 marked a pivotal turn in India’s battle against credit card fraud with the mandatory introduction of dual-factor authentication (DFA) for all online payments. Propelled by changing consumer habits and the rapid digitalization of financial services, India has seen a remarkable increase in credit card usage in the last ...

Spies for Hire: China’s new breed of hackers blends espionage and entrepreneurship – ET CISO https://etimg.etb2bimg.com/thumb/msid-85680968,imgsize-30538,width-1200,height=765,overlay-etciso/news/spies-for-hire-chinas-new-breed-of-hackers-blends-espionage-and-entrepreneurship.jpg China’s buzzy high-tech companies do not usually recruit Cambodian speakers, so the job ads for three well-paid positions with those language skills stood out. The ad, seeking writers of research reports, was placed by an internet security startup in China’s tropical island-province of Hainan. ...

Popular Android Apps Like Xiaomi, WPS Office Vulnerable to File Overwrite Flaw https://firewall.firm.in/wp-content/uploads/2024/05/apps.png May 02, 2024NewsroomVulnerability / Android Several popular Android applications available in Google Play Store are susceptible to a path traversal-affiliated vulnerability that could be exploited by a malicious app to overwrite arbitrary files in the vulnerable app’s home directory. “The implications of this vulnerability pattern include arbitrary ...

US newspapers sue OpenAI, Microsoft over AI chatbots – ET CISO https://etimg.etb2bimg.com/thumb/msid-109773658,imgsize-481616,width-1200,height=765,overlay-etciso/corporate/us-newspapers-sue-openai-microsoft-over-ai-chatbots.jpg Eight US newspapers sued OpenAI and Microsoft in a New York federal court Tuesday for violating their copyright to train the technology behind the ChatGPT and Copilot chatbots. The newspapers, which include The New York Daily News and The Chicago Tribune, are owned by Alden Global Capital, a ...

AI cannot replace doctors, says IMA chief, IT Security News, ET CISO Artificial intelligence cannot replace doctors though this technology can assist medical practitioners, IMA chief Dr R V Asokan has said. During an interaction with PTI editors, he said the medical profession has always been the first to embrace technology but it cannot supersede the connection between a patient ...

Zero-day vulnerabilities becoming major source of cyberattacks: Verizon – ET CISO https://etimg.etb2bimg.com/thumb/msid-109773721,imgsize-874584,width-1200,height=765,overlay-etciso/corporate/zero-day-vulnerabilities-becoming-major-source-of-cyberattacks-verizon.jpg Cyberattacks stemming from exploitation of vulnerabilities for accessing data have shot up by a staggering 180% in 2023 and almost tripled over the past year, a new study has revealed. The growth is majorly fueled by the MOVEit vulnerability where hackers exploited a zero-day vulnerability in the MOVEit ...

CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability https://firewall.firm.in/wp-content/uploads/2024/05/gitlab.png May 02, 2024NewsroomVulnerability / Data Breach The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical flaw impacting GitLab to its Known Exploited Vulnerabilities (KEV) catalog, owing to active exploitation in the wild. Tracked as CVE-2023-7028 (CVSS score: 10.0), the maximum severity vulnerability could facilitate account ...