vulnerabilities Pre-auth RCE zero days in Ivanti VPNs are being exploited by a Chinese APT and there won’t be a patch for weeks. Buckle up. Attackers re-write JavaScript loaded by the VPN login page for the Appliance to capture credentials; also grabbed Veeam credentials, moved laterally for full SYSTEM control.
Members only Broadcom Broadcom didn’t need to reinvent the mainframe – it just needed to buy VMware Revirtualization is possible. But it’s going to hurt
Patch Tuesday Patch Tuesday brings lots of chaff, a little buggy wheat too. Some CVE highlights to review. One vulnerability bears a striking resemblance to an 0day that was actively exploited in the wild in November 2023.
X SEC’s X account hacked: Unlike Mandiant, no MFA was in place "The SEC has not approved the listing and trading of spot bitcoin exchange-traded products"
Sponsored How SEGA’s Felix Baker delivered a data transformation “We have our low latency stream which goes into MongoDB; we have our main engineering pipeline, which goes to S3 and gets encrypted for GDPR purposes. Then we have a Spark stream, which pulls the data into Delta Lake..."
Members only ransomware Disclosed ransomware attacks hit two-per day in December: The real figure is ~500% higher "Simulate and exercise breach readiness, especially abilities to reduce blast radius of a cyber attack. Involve top leadership, the board, and customers in separate cyber war games, as often as practical..."
Interviews The Big Interview: Very Group Chief Data Officer, Steven Pimblett "If you get a good grip on that, happy customers, happy shareholders. If you get it wrong, you are sat on millions of pounds-worth of stock in a warehouse that you have to write off..."
Post Office As “Mr Bates” stirs police over Horizon, Post Office burns £31 million on failed cloud migration Cloud migration "impairment" writes off the equivalent to 81% of the Post Office's annual restructuring costs.
Cybersecurity Software licensing bug percolates pre-auth RCE risk downstream to PLC-land Another arguably more potent example and one actively exploited in the wild is CVE-2023-46604 – a CVSS 10 RCE vulnerability in Apache ActiveMQ; an open source message broker written in Java.
AI It’s time for enterprise SQL systems to take their turn in the AI sandbox... "The addition of pgvector for the SQL database specialist is also good news for users in sectors like financial services" says technology veteran David Walker.
Interviews The Big Interview: Rubrik CEO Bipul Sinha on going from no running water, to running a $500m business On Magic Quadrants, deal size, changing approaches to cyber-resilience and learning from his father.
Members only AWS AWS rattles customers with unclear warning over mystery "recent CVE" Warns users it will terminate affected tasks, but leaves a lacuna... (Fear not, we're here with details)
Epstein US Courts files system crashes as new Jeffrey Epstein files drop Proposal that Bill Clinton come to court "a transparent ploy by Plaintiff to increase media exposure for her sensational stories through deposition side-show"
Sponsored The Future of AI: From the world’s "most powerful cat" to transformative enterprise apps "Builders are creatives, if you unlock their creative power; empower them to compose with API services, new architectures… infinite possibilities emerge."
Kaspersky Kaspersky burns 11,000-line “NSA” exploit: Calls 14-step iPhone attack “definitely the most sophisticated attack chain we have ever seen” Apex Predators aside and in other news, a major telco just got hacked because it didn't have MFA set up on a critical account...
Members only Cybersecurity Utilities splash cash to get OT security in order as new "e-CAF" regime shakes up sector Another £82 million in Operational Technology and cybersecurity contracts hits the market as water, gas companies overhaul legacy systems amid pressure...
bug bounty Hallucinated vulnerability disclosure for Curl generates disgust But Bug Bounty platform HackerOne isn't too worried that LLM-generated bug reports will become a deluge...
AI AI predictions for 2024? "No serious user-facing product will display GPT-4-generated output given its legal issues that will continue and become even more serious throughout 2024; new architectures competing with Transformer, such as Mamba, will appear..."
Members only contracts Bank’s “Rainbow” programme turns a shade of Big Blue £100 million to build an application and a "fully functional transactional website"? We'll take it!
Members only open source As Cisco swoops on Cilium, community efforts look critical CNCF governance should avoid a "Hashicorp" situation, but increasingly broad community contributions to the important open source project would be welcome.
Twitter Musk falls short in bid to block mandatory reporting law Elon Musk's X has been denied in its efforts to block a California law mandating regular reports into its moderation practices
ISPs Chinese spy balloons found using commercial ISPs A commercial internet service provider in the US was said to have been used by Chinese intelligence to link up with the spy balloons spotted over remote parts of the country earlier this year
RFID PervasID founder Sabesan Sithamparanathan reflects on the future of RFID and STEM The founder of RFID company PervasID says that recent advances in the field making tracking easier and more accurate than ever
Cloud UK gas utility eyes "high-risk" shift to Azure, frets over ICS security "A requirement to bring unmanaged and unsupported ICS devices under proper governance and control..."
google Google hastily crosses legs and closes window on 'Incognito Mode' lawsuit Google has agreed to settle a lawsuit over claims that it had misrepresented the way in which it handles Incognito browser activity in Chrome