U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SimpleHelp vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a SimpleHelp vulnerability, tracked as CVE-2024-57727, to its Known Exploited Vulnerabilities (KEV) catalog. At the end of January, Horizon3 researchers discovered three vulnerabilities, tracked as CVE-2024-57726, CVE-2024-57727, and CVE-2024-57728, that could be used […]

A former exec from the company known for its antagonism to labor rights may head the agency tasked with protecting America’s workers.

One year on, and there’s still two things I love about Madame Web as much as it loves itself: stolen vehicles, and hitting people with those stolen vehicles.

The final episodes of Netflix’s Karate Kid spinoff series are now streaming–but one moment that was cut from them will have our heads spinning for a good while yet.

The company says the multi-billion dollar investment is needed to strengthen the reliability of the global internet and support AI innovation.

Critics of Amazon’s strangehold over the e-book industry have another thorn in their side.

Cybersecurity researchers have disclosed a new type of name confusion attack called whoAMI that allows anyone who publishes an Amazon Machine Image (AMI) with a specific name to gain code execution within the Amazon Web Services (AWS) account.
“If executed at scale, this attack could be used to gain access to thousands of accounts,” Datadog Security Labs researcher Seth Art said in a report

China-linked APT Salt Typhoon has breached more U.S. telecommunications providers via unpatched Cisco IOS XE network devices. China-linked APT group Salt Typhoon is still targeting telecommunications providers worldwide, and according to a new report published by Recorded Future’s Insikt Group, the threat actors has breached more U.S. telecommunications providers by exploiting unpatched Cisco IOS XE […]