Month: September 2024

The U.S. government has indicted a co-owner of a Minnesota IT company for his participation in an international conspiracy to sell forged license keys for networking devices. Benjamin Paley, 75, a resident of Plymouth in Minnesota, and co-owner of IT company GEN8 Services, has been indicted in the U.S. for his participation in an international…

Read More

The Irvine, Calif.-based IT distribution giant said it would use the net proceeds of an IPO to pay down a portion of the firm’s $1.16 billion in debt. Ingram Micro’s plans for an initial public offering (IPO) became clearer Monday with a new U.S. Securities and Exchange Commission filing by its holding company outlining the…

Read More

A critical-severity flaw in Nvidia Container Toolkit and GPU Operator impacts AI applications and more than a third of cloud environments, according to Wiz researchers. A recently discovered critical-severity Nvidia vulnerability poses a “serious risk” for the security of data, according to researchers that uncovered the issue. The flaw (tracked at CVE-2024-0132) impacts Nvidia Container…

Read More

A widespread Verizon outage is causing iPhones and Android devices to enter SOS mode, preventing them from making mobile calls unless they use WiFi calling. The Verizon wireless outage started at approximately 9:30 AM ET, with the outage tracking site Downdetector reporting that approximately 100,000 users are impacted by the issue. Verizon outage chart​​​​​​Source: DownDetector When…

Read More

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-25280 D-Link DIR-820 Router OS Command Injection Vulnerability CVE-2020-15415 DrayTek Multiple Vigor Routers OS Command Injection Vulnerability CVE-2021-4043 Motion Spell GPAC Null Pointer Dereference Vulnerability CVE-2019-0344 SAP Commerce Cloud Deserialization of Untrusted Data Vulnerability These types of vulnerabilities are frequent attack vectors…

Read More

Organizations face an ever-increasing array of sophisticated threats in today’s rapidly evolving cybersecurity landscape. Security Information and Event Management (SIEM) products have become an essential component of many organizations’ security strategies to combat these challenges. Modern SIEM security products offer a wide range of features designed to enhance threat detection, streamline incident response, and improve…

Read More

Global news agency AFP (Agence France-Presse) is warning that it suffered a cyberattack on Friday, which impacted IT systems and content delivery services. The news organization says the attack does not impact news coverage worldwide but has impacted some client services. AFP’s IT staff is working with France’s cybersecurity agency (ANSSI) to mitigate the attack…

Read More

CRN’s Women of the Year Awards aims to shine a spotlight on women who have made significant contributions to the channel throughout 2024. CRN is pleased to introduce the finalists for the second annual Women of the Year Awards, a project that aims to shine a spotlight on women who have made significant contributions to…

Read More

In today’s digital landscape, where data security and privacy are paramount, organizations need to demonstrate their commitment to protecting sensitive information. Service Organization Control (SOC) reports have become a crucial tool for businesses to showcase their security practices and build trust with clients and partners. Understanding Service Organization Control Reports: An Overview Before delving into…

Read More

Synology–Synology Drive Client  Insertion of sensitive information into log file vulnerability in proxy settings component in Synology Drive Client before 3.3.0-15082 allows remote authenticated users to obtain sensitive information via unspecified vectors. 2024-09-26 6.5 CVE-2022-49037 security@synology.com  Synology–Synology Drive Client  Out-of-bounds write vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local…

Read More