Critical Fortinet’s FortiClient EMS flaw actively exploited in the wild
Researchers released a PoC exploit for a critical flaw in Fortinet’s FortiClient Enterprise Management Server (EMS) software, which is actively…
Security
Pwn2Own Vancouver 2024 Day 1 – team Synacktiv hacked a Tesla
Participants earned $732,500 on the first day of the Pwn2Own Vancouver 2024 hacking competition, a team demonstrated a Tesla hack.…
Ivanti urges customers to fix critical RCE flaw in Standalone Sentry solution
Ivanti urges customers to address a critical remote code execution vulnerability impacting the Standalone Sentry solution. Ivanti addressed a critical…
Public AI as an Alternative to Corporate AI
This mini-essay was my contribution to a round table on Power and Governance in the Age of AI. It’s nothing…
New Loop DoS attack may target 300,000 vulnerable hosts
Boffins devised a new application-layer loop DoS attack based on the UDP protocol that impacts major vendors, including Broadcom, Microsoft…
Critical flaw in Atlassian Bamboo Data Center and Server must be fixed immediately
Atlassian fixed tens of vulnerabilities in Bamboo, Bitbucket, Confluence, and Jira products, including a critical flaw that can be very…
Threat actors actively exploit JetBrains TeamCity flaws to deliver malware
Multiple threat actors are exploiting the recently disclosed JetBrains TeamCity flaw CVE-2024-27198 in attacks in the wild. Trend Micro researchers…
CIPC breached
The Companies and Intellectual Property Commission (CIPC) in South Africa recently fell victim to a significant cyberattack, triggering concerns about…
BunnyLoader 3.0 surfaces in the threat landscape
Researchers found a new variant of the BunnyLoader malware with a modular structure and new evasion capabilities. In October 2023,…
Cheating Automatic Toll Booths by Obscuring License Plates
The Wall Street Journal is reporting on a variety of techniques drivers are using to obscure their license plates so…