Google has rolled an emergency patch for CVE-2024-4947, the third Chrome zero-day it's addressed in the past week.
| | | LATEST SECURITY NEWS & COMMENTARY | | Patch Now: Another Google Zero-Day Under Exploit in the Wild Google has rolled an emergency patch for CVE-2024-4947, the third Chrome zero-day it's addressed in the past week. 500 Victims In, Black Basta Reinvents With Novel Vishing Strategy Ransomware groups have always created problems for their victims that only they could solve. Black Basta is taking that core idea in a creative, new direction. Microsoft Windows DWM Zero-Day Poised for Mass Exploit CVE-2024-30051, under active exploit, is the most concerning out of this month's Patch Tuesday offerings, and already being abused by several QakBot actors. Ascension Healthcare Suffers Major Cyberattack The attack cut off access to electronic healthcare records (EHRs) and ordering systems, plunging the organization and its health services into chaos. There Is No Cyber Labor Shortage There are plenty of valuable candidates on the market. Hiring managers are simply looking in the wrong places. Dangerous Google Chrome Zero-Day Allows Sandbox Escape Exploit code is circulating for CVE-2024-4761, disclosed less than a week after a similar security vulnerability was disclosed as being used in the wild. Cybersecurity in a Race to Unmask a New Wave of AI-Borne Deepfakes Kevin Mandia, CEO of Mandiant at Google Cloud, calls for content "watermarks" as the industry braces for a barrage of mind-bending AI-generated fake audio and video traffic. Scammers Fake Docusign Templates to Blackmail & Steal From Companies Cybercriminals are trafficking Docusign assets that allow for easy extortion and business email compromise. Millions of IoT Devices at Risk From Flaws in Integrated Cellular Modem Researchers discovered seven vulnerabilities — including an unauthenticated RCE issue — in widely deployed Telit Cinterion modems. 2 (or 5) Bugs in F5 Asset Manager Allow Full Takeover, Hidden Accounts F5 customers should patch immediately, though even that won't protect them from every problem with their networked devices. 'The Mask' Espionage Group Resurfaces After 10-Year Hiatus Researchers recently spotted the Spanish-speaking threat actor — with nearly 400 previous victims under its belt — in a new campaign in Latin America and Central Africa. MORE NEWS / MORE COMMENTARY | | | | | | PRODUCTS & RELEASES | | Palo Alto Networks and IBM to Jointly Provide AI-Powered Security Offerings Notice of a Data Breach Alkira Raises $100M in Series C Funding to Simplify, Secure and Scale Critical Network Infrastructure CyberProof Announces Strategic Partnership With Google Cloud 87% of DDoS Attacks Targeted Windows OS Devices in 2023 MORE PRODUCTS & RELEASES |
| | | EDITORS' CHOICE | Dark Reading 'Drops' Its First Podcast Our brand-new podcast, Dark Reading Confidential, has officially launched. You don't want to miss our first episode with the CISO and chief legal officer from Reddit and a cybersecurity attorney, who share their thoughts and advice for CISOs on the new SEC breach disclosure rules. LATEST FROM THE EDGE
Top 5 Most Dangerous Cyber Threats in 2024 SANS Institute experts weigh in on the top threat vectors faced by enterprises and the public at large. LATEST FROM DR TECHNOLOGY
A Cost-Effective Encryption Strategy Starts With Key Management Key management is more complex than ever. Your choices are to rely on your cloud provider or manage keys locally, encrypt only the most critical data, or encrypt everything. LATEST FROM DR GLOBAL
Nigeria Halts Cybersecurity Tax After Public Outrage In the midst of an economy struggling with soaring inflation, the Nigerian government paused plans to place a levy on domestic transactions that was aimed at enhancing cybersecurity. |
|
| | | | | | | | |
|
Dark Reading Weekly
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| | To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here. | | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | | We take your privacy very seriously. Please review our Privacy Statement. |
|
| |
