Content Paint

Search the site
Search
Sign in

Cybersecurity

 |  file transfer  | Oct 02, 2023
File transfer software again under attack – CVSS 10 bug exploitable with a single HTTPS POST request
Progress software file transfer WS_FTP vulnerability CVE-2023-40044 exploit

Some 2,900 exposed. It's Progress, but it's not progress...

AI  | Oct 02, 2023
OpenAI faces novel jailbreak risks with GPT-4v image service
OpenAI faces novel jailbreak risks with GPT-4v image service

“Given the model’s imperfect but increased proficiency for such tasks, it could appear to be useful for certain dangerous tasks...such as synthesis of certain illicit chemicals”

Citi  | Sep 29, 2023
Job of the Week: Head of Generative AI Security, Citi
Job of the Week Head of Generative AI Security, Citi

"Ideate and leverage Gen AI to solve cybersecurity problems at scale for Citi..."

China  | Sep 28, 2023
Threat group is installing a backdoor in compromised Cisco router firmware. NSA says get better kit
Cisco router security warning

"The modified firmware uses a built-in SSH backdoor, allowing BlackTech actors to maintain access to the compromised router without their connections being logged"

cryptocurrencies  | Sep 27, 2023
Researcher hit with a Grand Jury subpoena after feds confuse crypto crook investigation with crime
Researcher hit with a Grand Jury subpoena after feds confuse crypto crook investigation with crime

Sam Curry's work investigating a phishing website from his own IP address saw events escalate rapidly...

Big Interview  | Sep 25, 2023
The Big Interview: Fidelity's DevOps boss Topo Pal on bad shifts left, "love letters", more.
The Big Interview: Fidelity's DevOps boss Topo Pal on bad shifts left, "love letters", more.

"DevSecOps shouldn't mean that developers have to be security experts. They won't be, they can't be and it is a very bad idea to even have this expectation."

Cybersecurity  | Sep 19, 2023
Las Vegas casino ransomware attacks: Okta in the spotlight as MGM slowly recovers
Las Vegas casino ransomware attacks: Okta in the spotlight as MGM slowly recovers

"I think our biggest challenge was, and this is something we learned the hard way, was the password reset..."

Microsoft  | Sep 18, 2023
Microsoft exposed 38TB of private AI data, including passwords and secret keys
Azure SAS tokens Microsoft AI data breach 38TB Wiz

Microsoft itself warns that it is "not possible to audit the generation of SAS tokens"

Cybersecurity  | Sep 13, 2023
MGM Resorts’ ransomware attack started with a single phone call
MGM ransomware social engineering

Social engineering allegedly led to MGM attack: $13 billion firm's cybersecurity "defeated by a 10-minute conversation"?

Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.