VMware fixed four security vulnerabilities in the Workstation and Fusion desktop hypervisors, including three zero-days exploited during the Pwn2Own Vancouver 2024 hacking contest. The most severe flaw patched today is CVE-2024-22267, a use-after-free flaw in the vbluetooth device demoed by the STAR Labs SG and Theori teams. “A malicious actor with local administrative privileges on…
Read More
May 14, 2024NewsroomVulnerability / Zero Day Google on Monday shipped emergency fixes to address a new zero-day flaw in the Chrome web browser that has come under active exploitation in the wild. The high-severity vulnerability, tracked as CVE-2024-4761, is an out-of-bounds write bug impacting the V8 JavaScript and WebAssembly engine. It was reported anonymously on…
Read MoreCISA released four Industrial Control Systems (ICS) advisories on May 14, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations. Source link lol
Read More
After three years of leading the world’s largest cloud company Amazon Web Services, CEO Adam Selipsky is leaving after spending nearly 15 years at AWS. AWS Matt Garman, currently senior vice president of AWS sales, marketing and global services, will become the CEO of the $100 billion cloud and AI giant. “Leading this amazing team…
Read More
As part of the 2024 Women of the Channel, CRN is highlighting 100 women at solution provider organizations whose insight and influence in their respective companies help drive channel success. CRN’s Women of the Channel list is an annual honoring of the impressive accomplishments of women within the channel. The Solution Provider Power 100, which…
Read More
The attack on the Ascension health system shut down its electronic health records system and forced it to divert emergency care at some of its hospitals. Ascension has added more details to its online site about the recovery from the ransomware attack that impacted the health system, with information now shared on a state-by-state basis.…
Read More
Microsoft has announced significant improvements to its spam filtering capabilities within Outlook, aiming to reduce the amount of unwanted emails reaching users’ inboxes. These enhancements leverage artificial intelligence (AI) and machine learning to better identify and block spam messages, providing a cleaner and more productive email experience. Key Improvements Improved Phishing Protection: Outlook’s spam filter…
Read More
Beth sent more than $26,000 to a man she met on Tinder. It was a romance scam, but one that brought complex storytelling, nuanced psychology and even acting skills to bear in a way that shocked even us. Check out this week’s episode to hear just how “good” romance scammers can be. In this week’s…
Read More
Since June 2023, Microsoft has been tracking activity from multiple Chinese and North Korean nation-state groups. Our observations indicate that these threat actors are doubling down on familiar targets by using novel, more sophisticated influence techniques to achieve their goals. In China, cyber actors have broadly targeted entities across the South Pacific Islands, regional adversaries…
Read More
“As more and more apps are being offered to the public, there is a relative paucity of data on threats to those apps,” Shugrue said. “One of the goals of this report seeks to begin to remedy that situation.” The report also highlighted that gaming and financial services applications face the highest risk of attacks…
Read More