Cybersecurity
The British government is changing Companies House name rules to prevent people from creating company names which include code that could sabotage unwary data processors through cross-site scripting (XSS) injection attacks. When a company is registered in the UK, it has to follow certain rules about its name – but provided
Cybersecurity
CVSS 9.8 vulnerability added to CISA "known exploited" catalogue
Cloud
Oracle fixed the vulnerability "extraordinarily quickly" in July, but it is unclear when it was introduced
Cybersecurity
“We’ve not seen the attacker accessed the production systems."
Cybersecurity
Over 90 videos of a development build of Grand Theft Auto 6 have been leaked after an apparent major breach at game developer Rockstar Games, with the culprit also threatening to leak GTA 6 source code. The GTA 6 leak includes footage of open-world gameplay and was confirmed as real
Cybersecurity
Uber has confirmed that it is investigating a cybersecurity incident. After an initial breach the Uber hacker claims to have found an internal network share that contained Powershell scripts with privileged credentials that let them easily pivot to compromising Uber’s Duo (authentication), OneLogin, AWS, and GSuite environments. "One
Cybersecurity
More than half the release involves RCE - time to get patching.
Cybersecurity
"Adversaries continue to have success with older, widely publicized and patchable exploits."
Cybersecurity
Meanwhile the NHS's paperwork backlog continues to build...
Cybersecurity
Attacks escalate, as implications of state cyber-aggression get more serious.
Cybersecurity
"Largely unregulated" co-los could face regulatory intervention...
Cybersecurity
Multiple versions of "Stoic surgeon" backdoor used in attack says CVERC