Month: September 2024
DNA testing giant 23andMe has agreed to pay $30 million to settle a lawsuit over a data breach that exposed the personal information of 6.4 million customers in 2023. The proposed class action settlement, filed Thursday in a San Francisco federal court and awaiting judicial approval, includes cash payments for affected customers, which will be distributed…
Read More
Ivanti confirmed on Friday that a high-severity vulnerability in its Cloud Services Appliance (CSA) solution is now actively exploited in attacks. “At the time of disclosure on September 10, we were not aware of any customers being exploited by this vulnerability. At the time of the September 13 update, exploitation of a limited number of…
Read More
Larocque is officially retiring as president of TD Synnex North America on November 30 and moving into a special advisor role. When Peter Larocque graduated with an economics degree from the University of Western Ontario in 1983 he bought a one-way ticket to San Francisco, ran out of money and ended up getting a job…
Read More
Hackers are targeting Oracle WebLogic servers to infect them with a new Linux malware named “Hadooken, which launches a cryptominer and a tool for distributed denial-of-service (DDoS) attacks. The access obtained may also be used to execute ransomware attacks on Windows systems. Researchers at container security solution company Aqua Security observed such an attack on a…
Read More
‘We have seen, especially in that AI space, these extremely high-powered chips on back order because they can’t make them fast enough. AWS own chips are going to be extremely beneficial on that side of it, especially as these AI workloads increase,’ says ClearScale CEO Jimmy Chui. Solution providers are bullish on Amazon Web Services’…
Read More
In the wake of the global Windows outage caused by a faulty CrowdStrike update in July, ‘both our customers and ecosystem partners have called on Microsoft to provide additional security capabilities outside of kernel mode,’ Microsoft’s David Weston says. In the wake of the CrowdStrike-caused outage that led to widespread societal disruptions in July, Microsoft…
Read More
Kawasaki Motors Europe has announced that it’s recovering from a cyberattack that disrupted service disruptions as the RansomHub ransomware gang threatens to leak stolen data. The company says the attack targeted its EU headquarters, and it is currently analyzing and cleaning any “suspicious material,” such as malware, that may still be lurking on systems. “At the…
Read More
Sep 13, 2024Ravie LakshmananVirtual Reality / Vulnerability Details have emerged about a now-patched security flaw impacting Apple’s Vision Pro mixed reality headset that, if successfully exploited, could allow malicious attackers to infer data entered on the device’s virtual keyboard. The attack, dubbed GAZEploit, has been assigned the CVE identifier CVE-2024-40865. “A novel attack that can…
Read More
The percentage equates to a potential 1,500 customers affected in the compromise of Fortinet’s cloud file-share environment. Fortinet disclosed that the breach of its cloud file-share environment impacted “less than 0.3 percent” of customers, while noting that it believes the incident isn’t likely to have a significant impact on its business. The cybersecurity vendor had…
Read More
For the week ending Sept. 13, CRN takes a look at the companies that brought their ‘A’ game to the channel including ConnectWise, Todyl, AWS, ServiceNow and Blue Mantis. The Week Ending Sept. 13 Topping this week’s Came to Win list is ConnectWise for its Axcient and SkyKick acquisitions that will boost its data protection…
Read More