Attackers are already actively exploiting six of the bugs and four others are public, including one for which Microsoft has no patch yet.
| LATEST SECURITY NEWS & COMMENTARY | Microsoft Discloses 10 Zero-Day Bugs in Patch Tuesday Update Attackers are already actively exploiting six of the bugs and four others are public, including one for which Microsoft has no patch yet. DNC Credentials Compromised by 'IntelFetch' Telegram Bot The Democratic National Convention soon to take place in Chicago, already under heavy security, faces an additional threat in the form of stolen credentials for delegates. Cybercriminal Duo Attracts FBI Notice by Spending Big & Living Large Cash may be king, but law enforcement keeps track of who spends it, especially when it's in the six-figure range. Inc Ransomware Encryptor Contains Keys to Victim Data Recovery The threat group is disrupting healthcare organizations. Victims can help themselves, though, even after compromise, by being careful in the decryption process. Critical Ivanti vTM Bug Allows Unauthorized Admin Access The CVSS 9.8 authentication bypass in Ivanti's traffic manager admin panel already has a proof-of-concept (PoC) exploit lurking in the wild. Microsoft Azure AI Health Bot Infected With Critical Vulnerabilities Privilege escalation flaws in the healthcare chatbot platform could have allowed unauthorized cross-tenant access and management of other customers’ resources. APT41 Spinoff Expands Chinese Actor's Scope Beyond Asia Earth Baku, yet another subgroup of the highly active and increasingly sophisticated collective, is moving into EMEA with new malware and living-off-the-land (LotL) tactics. FBI Shuts Down Dozens of Radar/Dispossessor Ransomware Servers Computer infrastructure in the US, UK, and Germany associated with the cybercriminal group, which targeted SMBs using double extortion, is officially out of commission. NIST Finalizes Post-Quantum Encryption Standards The new standards from NIST are designed for two tasks: general encryption and digital signatures. The Changing Expectations for Developers in an AI-Coding Future AI's proficiency at creating software code won't put developers out of a job, but the job will change to one focused on security, collaboration, and "mentoring" AI models. MORE NEWS / MORE COMMENTARY | | | PRODUCTS & RELEASES | Vectra AI Expands XDR Platform to Deliver a Real-Time View of Active Posture to Monitor Exposure to Attackers WiCyS and ISC2 Launch Fall Camp for Cybersecurity Certification Progress Announces Conclusion of SEC Investigation into MOVEit MORE PRODUCTS & RELEASES |
|
Dark Reading Daily -- Published By Dark Reading Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| To opt-out of any future Dark Reading Daily Newsletter emails, please respond here. | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | We take your privacy very seriously. Please review our Privacy Statement. |
|
|