Latest News

A Fortinet zero-day tracked as CVE-2024-47575 and named FortiJump has been exploited since at least June 2024.

The Penn State university has agreed to pay $1.25 million to settle alleged failure to meet cybersecurity requirements for DoD and NASA contracts.

AI models from Hugging Face can contain similar hidden problems to OSS downloads from repositories such as GitHub.

Cisco has released patches for multiple vulnerabilities in ASA, FMC, and FTD products, including an exploited flaw.

Over $350,000 was paid out on day 2 of Pwn2Own Ireland 2024, including $50,000 for an exploit targeting the Samsung Galaxy S24. 

Fortinet confirms zero-day exploits hitting critical (CVSS severity score 9.8/10) remote code execution bug in the FortiManager platform.

Google has released new technology to embed watermarks and flag AI-generated content across text, images, audio, and video.

New York startup raises $33 million in an expanded Series A round to build technology to detect deepfake and AI-generated media.

Avast has released a decryptor for the Mallox ransomware after identifying a weakness in its cryptographic schema.

Socket has raised $40 million in a Series B funding round to work on open source software supply chain security technology.

CISA and the DOJ are seeking comment on rules whose goal is to protect the personal data of Americans against foreign adversaries.

OT security firm targets CISOs with new solution described as a multi-layer machine learning process-oriented OT cybersecurity suite.

A file-encrypting malware family posing as the LockBit ransomware has been observed targeting macOS systems.

IBM is updating and upgrading its Guardium platform to provide security for the two primary new technology problems: AI models and quantum safety. 

CISA has added a recent Microsoft SharePoint Server remote code execution vulnerability to the KEV catalog.