News

Keeping it real: Sophos and the 2024 MITRE ATT&CK Evaluations: Enterprise

Bys s December 23, 2024

Sophos X-Ops looks at the realism of this year’s MITRE ATT&CK Evaluations

News

New Linux Flaws Allow Password Hash Theft via Core Dumps in Ubuntu, RHEL, Fedora
Bys s May 31, 2025

Two information disclosure flaws have been identified in apport and systemd-coredump, the core dump handlers in Ubuntu, Red Hat Enterprise Linux, and Fedora, according to the Qualys Threat Research Unit (TRU). Tracked as CVE-2025-5054 and CVE-2025-4598, both vulnerabilities are race condition bugs that could enable a local attacker to obtain access to access sensitive information….

Read More New Linux Flaws Allow Password Hash Theft via Core Dumps in Ubuntu, RHEL, Fedora
News

UK: Physiotherapist who accessed patient’s personal data to visit her home is struck off
Bys s August 1, 2025

The PA News Agency reports: A medical professional who used a patient’s personal data to visit her home with a gift while working as a vaccinator has been struck off the register. Josep Bofill Blanch, who was a registered physiotherapist employed by NHS Grampian in north-east Scotland, met the woman and gave her an injection when…

Read More UK: Physiotherapist who accessed patient’s personal data to visit her home is struck off
News

Blue Shield of California shared the health data of 4.7 million people with Google for years
Bys s April 24, 2025

Jonathan Greig reports: The sensitive healthcare information of millions in the U.S. has been leaked through data breaches that multiple insurance companies, clinics, hospitals and more reported recently. The largest involves Blue Shield of California, which informed the U.S. Department of Health and Human Services (HHS) of an incident impacting 4.7 million people. In breach notification…

Read More Blue Shield of California shared the health data of 4.7 million people with Google for years
News

New GodRAT Trojan Targets Trading Firms Using Steganography and Gh0st RAT Code
Bys s August 19, 2025

Financial institutions like trading and brokerage firms are the target of a new campaign that delivers a previously unreported remote access trojan called GodRAT. The malicious activity involves the “distribution of malicious .SCR (screen saver) files disguised as financial documents via Skype messenger,” Kaspersky researcher Saurabh Sharma said in a technical analysis published today. The

Read More New GodRAT Trojan Targets Trading Firms Using Steganography and Gh0st RAT Code
News

Wultra Raises €3 Million for Post-Quantum Authentication
Bys s January 16, 2025

Authentication solutions provider Wultra has raised €3 million (~$3.1 million) for its post-quantum technology. The post Wultra Raises €3 Million for Post-Quantum Authentication appeared first on SecurityWeek.

Read More Wultra Raises €3 Million for Post-Quantum Authentication
News

Threat Actors Weaponize HexStrike AI to Exploit Citrix Flaws Within a Week of Disclosure
Bys s September 3, 2025

Threat actors are attempting to leverage a newly released artificial intelligence (AI) offensive security tool called HexStrike AI to exploit recently disclosed security flaws. HexStrike AI, according to its website, is pitched as an AI‑driven security platform to automate reconnaissance and vulnerability discovery with an aim to accelerate authorized red teaming operations, bug bounty hunting,

Read More Threat Actors Weaponize HexStrike AI to Exploit Citrix Flaws Within a Week of Disclosure

Similar Posts