A breach at Rackspace exposes the fragility of the software supply chain, triggering a blame game among vendors over an exploited zero-day.
The post Zero-Day Breach at Rackspace Sparks Vendor Blame Game appeared first on SecurityWeek.
Record-Breaking DDoS Attack Peaked at 3.8 Tbps, 2.14 Billion Pps
Cloudflare recently mitigated another record-breaking DDoS attack, peaking at 3.8 Tbps and 2.14 billion Pps.
The post Record-Breaking DDoS Attack Peaked at 3.8 Tbps, 2.14 Billion Pps appeared first on SecurityWeek.
More LockBit Hackers Arrested, Unmasked as Law Enforcement Seizes Servers
Previously seized LockBit websites have been used to announce more arrests, charges and infrastructure disruptions.
The post More LockBit Hackers Arrested, Unmasked as Law Enforcement Seizes Servers appeared first on SecurityWeek.
California Governor Vetoes Bill to Create First-in-Nation AI Safety Measures
Gavin Newsom vetoed a landmark bill SB 1047 aimed at establishing first-in-the-nation safety measures for large artificial intelligence models.
The post California Governor Vetoes Bill to Create First-in-Nation AI Safety Measures appeared first on SecurityWeek.
Controversial Windows Recall AI Search Tool Returns With Proof-of-Presence Encryption, Data Isolation
Microsoft reboots controversial Windows Recall with proof-of-presence encryption, anti-tampering checks, and secure enclave data management.
The post Controversial Windows Recall AI Search Tool Returns With Proof-of-Presence Encryption, Data Isolation appeared first on SecurityWeek.
Highly Anticipated Linux Flaw Allows Remote Code Execution, but Less Serious Than Expected
A researcher has disclosed the details of an unpatched vulnerability that was expected to pose a serious threat to many Linux systems.
The post Highly Anticipated Linux Flaw Allows Remote Code Execution, but Less Serious Than Expected appeared first on SecurityWeek.
Critical Nvidia Container Flaw Exposes Cloud AI Systems to Host Takeover
Nvidia confirms risk of code execution, denial of service, escalation of privileges, information disclosure, and data tampering. CVSS 9/10.
The post Critical Nvidia Container Flaw Exposes Cloud AI Systems to Host Takeover appeared first on SecurityWeek.
Israeli Group Claims Lebanon Water Hack as CISA Reiterates Warning on Simple ICS Attacks
Unsophisticated methods can still be used to hack ICS/OT — even so, many cyberattack claims are likely exaggerated.
The post Israeli Group Claims Lebanon Water Hack as CISA Reiterates Warning on Simple ICS Attacks appeared first on SecurityWeek.
CrowdStrike Overhauls Testing and Rollout Procedures to Avoid System Crashes
CrowdStrike says it has revamped several testing, validation, and update rollout processes to prevent a repeat of the July BSOD incident.
The post CrowdStrike Overhauls Testing and Rollout Procedures to Avoid System Crashes appeared first on SecurityWeek.
AI-Generated Malware Found in the Wild
HP has intercepted an email campaign comprising a standard malware payload delivered by an AI-generated dropper.
The post AI-Generated Malware Found in the Wild appeared first on SecurityWeek.