Stay informed with Security World Trend Now! Discover the latest security trends, technologies, and strategies to protect your data, networks, and digital identity. Get expert insights and practical advice for ensuring your online safety. Explore now!
China-Linked Cyber Espionage Actor “Earth Lusca” Expands Operations with Linux Backdoor The Discovery of SprySOCKS Researchers at Trend Micro have identified a new cyber espionage campaign carried out by the China-linked threat actor “Earth Lusca.” The group, which has been active since at least 2021, has been targeting government organizations in Asia, Latin America, and…
Cyberattack Causes Clorox Product Shortages: A Wake-Up Call for Internet Security The Clorox Cyberattack: A Disruptive Blow to Production Clorox, a renowned household cleaning and consumer products company, is facing critical supply chain disruptions as a result of a recent cyberattack. The attack was first identified on August 14th, when unauthorized activity was detected on…
Trend Micro Releases Advisory for Critical Zero-Day Flaw Internet Security and Vulnerability Analysis Trend Micro, a leading provider of cybersecurity solutions, recently issued an advisory highlighting a critical zero-day vulnerability affecting several of its products. The vulnerability, tracked as CVE-2023-41179, poses a significant risk as it allows for arbitrary code execution. The affected products include…
The Interpretation and Implementation of SEC Cyber Incident Disclosure Rules Introduction In the wake of the new Securities and Exchange Commission (SEC) regulatory requirements to disclose “material” cyber incidents within four days of discovery, the recent cyber breaches of MGM Resorts and Caesars Entertainment have highlighted the differing interpretations of these rules. Both breaches involved…
CrowdStrike to Acquire Application Intelligence Startup Bionic CrowdStrike, a leading cybersecurity vendor, has announced its plans to acquire Bionic, a Silicon Valley startup specializing in Application Security Posture Management (ASPM) tools. The cash-and-stock transaction, valued at approximately $350 million, will provide CrowdStrike with capabilities to enhance its enterprise cloud security portfolio. Strengthening Enterprise Cloud Security…
Policy DHS Council Seeks to Simplify Cyber Incident Reporting Rules The Department of Homeland Security (DHS) delivered a 100-page report on Tuesday, outlining recommendations to simplify the complex landscape of cyber incident reporting requirements faced by critical infrastructure operators in the United States. The report, developed by the Cyber Incident Reporting Council, highlights the need…
HiddenLayer Raises $50M Round for AI Security Tech Introduction Texas startup HiddenLayer has secured $50 million in new venture capital funding to develop their machine learning detection and response (MLMDR) technology. The funding round was led by M12, Microsoft’s Venture Fund, and Moore Strategic Ventures, with additional investments from Booz Allen Ventures, IBM Ventures, Capital…
Venafi Leverages Generative AI to Manage Machine Identities Venafi, a machine identity firm, has introduced a proprietary generative AI (gen-AI) model to address the growing challenge of managing machine identities. The use of gen-AI in applications has become essential for performance and marketing purposes, but it also carries risks that must be carefully managed. Athena…
Clorox Company Faces Product Shortages After Cyberattack The Clorox Company, known for its popular household products such as Burt’s Bees, Glad, Liquid-Plumr, Pine-Sol, and Tilex, is currently grappling with product shortages following a cyberattack on its systems. The company initially disclosed the incident in a mid-August filing with the Securities and Exchange Commission (SEC), stating…
The Vulnerabilities in Mozilla‘s Firefox and Thunderbird The National Cyber Security Agency in Qatar has issued a warning to Adobe users to urgently apply patches following the disclosure of vulnerabilities in Mozilla‘s Firefox and Thunderbird. These vulnerabilities, identified as CVE-2023-4863 with a CVSS score of 8.8, are critical heap buffer overflows in the WebP library…