Critical Apache Avro SDK Flaw Allows Remote Code Execution in Java Applications
A critical security flaw has been disclosed in the Apache Avro Java Software Development Kit (SDK) that, if successfully exploited,…
E.U. Court Limits Meta’s Use of Personal Facebook Data for Targeted Ads
Europe’s top court has ruled that Meta Platforms must restrict the use of personal data harvested from Facebook for serving…
Apple Releases Critical iOS and iPadOS Updates to Fix VoiceOver Password Vulnerability
Apple has released iOS and iPadOS updates to address two security issues, one of which could have allowed a user’s…
MITRE Launches AI Incident Sharing Initiative
The collaboration with industry partners will improve collective AI defenses. Trusted contributors receive protected and anonymized data on real-world AI…
Friday Squid Blogging: Map of All Colossal Squid Sightings
Interesting map, from this paper. Blog moderation policy. Interesting map, from this paper. Blog moderation policy. Read More
Microsoft, DOJ Dismantle Russian Hacker Group Star Blizzard
The successful disruption of notorious Russian hacker group Star Blizzard’s operations arrives one month out from the US presidential election…
Insider Threat Damage Balloons as Visibility Gaps Widen
A growing number of organizations are taking longer to get back on their feet after an attack, and they’re paying…
iPhone ‘VoiceOver’ Feature Could Read Passwords Aloud
CVE-2024-44204 is one of two new Apple iOS security vulnerabilities that showcase an unexpected coming together of privacy snafus and…
U.S. and Microsoft Seize 107 Russian Domains in Major Cyber Fraud Crackdown
Microsoft and the U.S. Department of Justice (DoJ) on Thursday announced the seizure of 107 internet domains used by state-sponsored…
Cybersecurity Is Serious — but It Doesn’t Have to Be Boring
Thoughtfully applied, humor breaks through security fatigue, increases engagement, and fosters a culture of security awareness. Thoughtfully applied, humor breaks…
