Jan 03, 2025Ravie LakshmananWindows Server / Threat Mitigation A proof-of-concept (PoC) exploit has been released for a now-patched security flaw impacting Windows Lightweight Directory Access Protocol (LDAP) that could trigger a denial-of-service (DoS) condition. The out-of-bounds reads vulnerability is tracked…
Jan 03, 2025Ravie LakshmananTechnology / Data Privacy Apple has agreed to pay $95 million to settle a proposed class action lawsuit that accused the iPhone maker of invading users’ privacy using its voice-activated Siri assistant. The development was first reported…
Chinese state-backed hackers have compromised US Treasury computers and accessed unclassified information, after targeting a third-party cybersecurity vendor, it has emerged. The Treasury confirmed the news in a letter to the Senate Committee on Banking, Housing and Urban Affairs, dated…
A novel variation of clickjacking, known as DoubleClickjacking, has been discovered, raising significant security concerns across websites that rely on UI-based authentication mechanisms. This sophisticated attack, observed by cybersecurity expert Paulos Yibelo, bypasses long-standing defenses like the X-Frame-Options header and…
A groundbreaking malware disinfection campaign targeting the PlugX worm has been executed with the collaboration of international authorities. Led by the Sekoia Threat Detection & Research team, the operation disinfected compromised systems across multiple countries. The PlugX worm, often linked…
Jan 02, 2025Ravie LakshmananCyber Espionage / Hacking German prosecutors have charged three Russian-German nationals for acting as secret service agents for Russia. The individuals, named Dieter S., Alexander J., and Alex D., have been accused of working for a foreign…
Chances are that your organisation is one of the many businesses that are adopting AI. And while artificial intelligence can bring opportunities for enhanced productivity, increase your innovation, or streamline processes… it can also introduce risk. Without proper safeguarding, AI…
The US government has published plans to update the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule, in a bid to address surging healthcare data breaches. The proposed rule would require all health plans, healthcare clearing houses…
Jan 02, 2025Ravie LakshmananVulnerability / Data Protection Details have emerged about three now-patched security vulnerabilities in Dynamics 365 and Power Apps Web API that could result in data exposure. The flaws, discovered by Melbourne-based cybersecurity company Stratus Security, have been…
Mark and I took a break for the new year, but we’ll be back for a new episode of “The AI Fix” podcast at the usual time next week. In the meantime, here is another chance to hear one of…
All Rights Reserved. Kowatek Blog by IWUCHI
Home | About Us | Disclaimer | Privacy Policy | Contact Us
