Cloud Security Alliance News Clipping Site

Tag: cybercriminal

  • The Register: Now’s your chance to try Microsoft’s controversial Windows Recall … maybe

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/22/microsoft_recall_release/ Source: The Register Title: Now’s your chance to try Microsoft’s controversial Windows Recall … maybe Feedly Summary: Like its AI, this automated screenshotter and logger is a feature not exactly everyone wanted Microsoft has initiated a limited public preview of its Windows Recall system – about six months after its unveiling sparked…

  • Slashdot: Fintech Giant Finastra Investigating Data Breach

    by

    system automation
    in

    Source URL: https://it.slashdot.org/story/24/11/21/2043251/fintech-giant-finastra-investigating-data-breach Source: Slashdot Title: Fintech Giant Finastra Investigating Data Breach Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a significant security incident involving Finastra, a fintech firm that supports major banks. The report highlights the alleged theft of over 400 gigabytes of sensitive data from their internal file transfer platform,…

  • Krebs on Security: Feds Charge Five Men in ‘Scattered Spider’ Roundup

    by

    system automation
    in

    Source URL: https://krebsonsecurity.com/2024/11/feds-charge-five-men-in-scattered-spider-roundup/ Source: Krebs on Security Title: Feds Charge Five Men in ‘Scattered Spider’ Roundup Feedly Summary: Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. technology companies between 2021 and 2023, including…

  • Alerts: CISA Adds Three Known Exploited Vulnerabilities to Catalog

    by

    system automation
    in

    Source URL: https://www.cisa.gov/news-events/alerts/2024/11/21/cisa-adds-three-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Three Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-44308 Apple Multiple Products Code Execution Vulnerability CVE-2024-44309 Apple Multiple Products Cross-Site Scripting (XSS) Vulnerability CVE-2024-21287 Oracle Agile Product Lifecycle Management (PLM) Incorrect Authorization Vulnerability…

  • Hacker News: Ghost Tap: New cash-out tactic with NFC Relay

    by

    system automation
    in

    Source URL: https://www.threatfabric.com/blogs/ghost-tap-new-cash-out-tactic-with-nfc-relay Source: Hacker News Title: Ghost Tap: New cash-out tactic with NFC Relay Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a new cash-out tactic used by fraudsters, termed “Ghost Tap,” which involves relaying NFC traffic to covertly cash out stolen credit card information linked to mobile payment systems…

  • The Register: Mega US healthcare payments network restores system 9 months after ransomware attack

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/20/change_healthcares_clearinghouse_services/ Source: The Register Title: Mega US healthcare payments network restores system 9 months after ransomware attack Feedly Summary: Change Healthcare’s $2 billion recovery is still a work in progress Still reeling from its February ransomware attack, Change Healthcare confirms its clearinghouse services are back up and running, almost exactly nine months since…

  • Hacker News: Microsoft will soon let you clone your voice for Teams meetings

    by

    system automation
    in

    Source URL: https://techcrunch.com/2024/11/19/soon-microsoft-will-let-teams-meeting-attendees-clone-their-voices/ Source: Hacker News Title: Microsoft will soon let you clone your voice for Teams meetings Feedly Summary: Comments AI Summary and Description: Yes Summary: Microsoft has announced a new feature called Interpreter for Teams, which will enable users to clone their voices for real-time interpretation in multiple languages, starting in early 2025.…

  • Krebs on Security: Fintech Giant Finastra Investigating Data Breach

    by

    system automation
    in

    Source URL: https://krebsonsecurity.com/2024/11/fintech-giant-finastra-investigating-data-breach/ Source: Krebs on Security Title: Fintech Giant Finastra Investigating Data Breach Feedly Summary: The financial technology firm Finastra is investigating the alleged large-scale theft of information from its internal file transfer platform, KrebsOnSecurity has learned. Finastra, which provides software and services to 45 of the world’s top 50 banks, notified customers of…

  • The Register: Healthcare org Equinox notifies 21K patients and staff of data theft

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/20/equinox_patients_employees_data/ Source: The Register Title: Healthcare org Equinox notifies 21K patients and staff of data theft Feedly Summary: Ransomware scum LockBit claims it did the dirty deed Equinox, a New York State health and human services organization, has begun notifying over 21 thousand clients and staff that cyber criminals stole their health, financial,…

  • The Register: China-linked group abuses Fortinet 0-day with post-exploit VPN-credential stealer

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/19/china_brazenbamboo_fortinet_0day/ Source: The Register Title: China-linked group abuses Fortinet 0-day with post-exploit VPN-credential stealer Feedly Summary: No word on when or if the issue will be fixed Chinese government-linked snoops are exploiting a zero-day bug in Fortinet’s Windows VPN client to steal credentials and other information, according to memory forensics outfit Volexity.… AI…