Author: nlqip
Marriott International and its subsidiary Starwood Hotels will pay $52 million and create a comprehensive information security program as part of settlements for data breaches that impacted over 344 million customers. The settlement requires Marriott and Starwood to implement a comprehensive security program and allow their U.S. customers to request personal data deletions. Additionally, the American…
Read More
U.S. and U.K. cyber agencies warned today that APT29 hackers linked to Russia’s Foreign Intelligence Service (SVR) target vulnerable Zimbra and JetBrains TeamCity servers “at a mass scale.” A joint advisory issued by the NSA, the FBI, the U.S. Cyber Command’s Cyber National Mission Force (CNMF), and the U.K.’s NCSC warns network defenders to patch exposed…
Read More
While AMD says its forthcoming Instinct MI325X GPU can outperform Nvidia’s H200 for large language model inference, the chip designer is teasing that its next-generation MI350 series will deliver magnitudes of better inference performance in the second half of next year. AMD said its forthcoming 256-GB Instinct MI325X GPU can outperform Nvidia’s 141-GB H200 processor…
Read MoreMS-ISAC ADVISORY NUMBER: 2024-115 DATE(S) ISSUED: 10/10/2024 OVERVIEW: A vulnerability has been discovered in Mozilla Firefox which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the Internet. Successful exploitation could allow for arbitrary code execution. Depending on the privileges associated with the user an attacker could then install…
Read More
“This strategic acquisition provides the right mix of synergies and growth opportunities for both organizations and aligns perfectly with our focus on investing in opportunities that foster growth and innovation,” said Presidio CEO Bob Cagnazzi. Channel partner all-star Presidio is significantly expanding its market presence in the U.S. by acquiring Charlotte, North Carolina-based Internetwork Engineering…
Read More
Image: Fidelity InvestmentsFidelity Investments, a Boston-based multinational financial services company, disclosed that the personal information of over 77,000 customers was exposed after its systems were breached in August. As one of the largest asset managers in the world, with $14.1 trillion in assets under administration and $5.5 trillion under management, Fidelity employs over 75,000 associates across 11…
Read More
The Underground ransomware gang has claimed responsibility for an October 5 attack on Japanese tech giant Casio, which caused system disruptions and impacted some of the firm’s services. Earlier this week, Casio disclosed the attack on its website but withheld details about the incident, saying it had engaged external IT specialists to investigate whether personal data…
Read More
‘We want to continue making technology easier and more secure for organizations,’ says JumpCloud CEO Rajat Bhargava. ‘Our focus will be on enabling passwordless access, secure use of AI and ensuring people can work seamlessly from anywhere.’ After seeing significant growth in the past year and relaunching its partner program, JumpCloud is focusing on MSPs…
Read MoreCISA released twenty-one Industrial Control Systems (ICS) advisories on October 10, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-284-01 Siemens SIMATIC S7-1500 and S7-1200 CPUs ICSA-24-284-02 Siemens Simcenter Nastran ICSA-24-284-03 Siemens Teamcenter Visualization and JT2Go ICSA-24-284-04 Siemens SENTRON PAC3200 Devices ICSA-24-284-05 Siemens Questa and ModelSim ICSA-24-284-06 Siemens…
Read More
GitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary branch pipeline execution flaw. The vulnerability, which is tracked as CVE-2024-9164, allows unauthorized users to trigger Continuous Integration/Continuous Delivery (CI/CD) pipelines on any branch of a repository. CI/CD pipelines are automated processes that perform tasks…
Read More