Welcome to this week’s edition of the “Bi-Weekly Cyber Roundup” by Canary Trap. At Canary Trap, it is our mission to keep you up-to-date with the most crucial news in the world of cybersecurity and this bi-weekly publication is your gateway to the latest news. In this week’s roundup, we explore cyber news from across…
Read More
Image: Coolcaesar (CC BY-SA 4.0) Panda Restaurant Group, the parent company of Panda Express, Panda Inn, and Hibachi-San, disclosed a data breach after attackers compromised its corporate systems in March and stole the personal information of an undisclosed number of individuals. Panda Express is the largest Chinese fast food chain in the United States, with…
Read More
The semiconductor giant says its AI model optimization work is important because ‘models form the backbone of AI-enhanced software features like object removal, image super resolution or text summarization.’ Intel said it has optimized more than 500 AI models for its Core Ultra processors, calling the move a “significant milestone” in its effort to position…
Read More
CRN compares sales growth rate, cloud market share, total revenue, operating income and more from Microsoft, Google Cloud and AWS’ recent first-quarter 2024 earnings results. The cloud sales results are in for first-quarter 2024 as the world’s three top cloud computing companies—Microsoft, Google Cloud and Amazon Web Services—continue to battle for global cloud market share.…
Read More
The Hôpital de Cannes – Simone Veil (CHC-SV) in France announced it received a ransom demand from the Lockbit 3.0 ransomware gang, saying they refuse to pay the ransom. On April 17, the 840-bed hospital announced a severe operational disruption caused by a cyberattack that forced it to take all computers offline and reschedule non-emergency procedures and…
Read More
CISA warned today that attackers are actively exploiting a maximum-severity GitLab vulnerability that allows them to take over accounts via password resets. GitLab hosts sensitive data, including proprietary code and API keys, and account hijacking can have a significant impact. Successful exploitation can also lead to supply chain attacks that can compromise repositories by inserting…
Read MoreCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-7028 Microsoft SmartScreen Prompt Security Feature Bypass Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of…
Read More
As UnitedHealth’s CEO gets grilled by a U.S. Senate committee, the folly of acquiring a company with outdated cybersecurity practices is on display. Among the many lessons from the Change Healthcare cyberattack, one that’s come into clearer focus this week goes something like this: Companies that ignore cybersecurity as part of an M&A process, do…
Read More
With its own MongoDB Atlas development platform at the core, the new MAAP initiative pulls together expertise and technology from cloud hyperscalers, leading GenAI tech providers such as Anthropic and LangChain, and MongoDB consulting/SI partners. MongoDB has launched a program that provides a complete technology stack, services and other resources to help businesses develop and…
Read More
Microsoft has confirmed customer reports of NTLM authentication failures and high load after installing last month’s Windows Server security updates. According to a new entry added to the Windows health dashboard on Tuesday, this known issue will only affect Windows domain controllers in organizations with a lot of NTLM traffic and few primary DCs. The…
Read More