8 vulnerabilities have been discovered in macOS operating system Microsoft apps by researchers from Cisco Talos. These vulnerabilities allow a malicious actor to bypass the permission model of the OS using existing permissions without further user verification. Exploiting these vulnerabilities could give an attacker privileges within the targeted application, such as sending emails, recording video […]
Critical Start has recently published its biannual Cyber Threat Intelligence Report, highlighting the top threat trends witnessed in the first half of 2024. This encompasses emerging cybersecurity threats affecting industries like manufacturing, technology, healthcare, engineering and construction, and professional services. Noteworthy discoveries from the report include: Manufacturing emerges as the primary target industry for malicious […]
National Public Data, a background checking organization, experienced a breach potentially affecting 2.9 billion individuals. The breach exposed personally identifiable information (PII) such as names, phone numbers, mailing addresses, email addresses, and Social Security numbers. “Organizations rely on the exchange of data for their vitality,” says Clyde Williamson, Product Management, Innovations at Protegrity. “Consumers share […]
New research from Cado Security reveals that malicious actors are imitating tech companies in an effort to compromise corporate systems. Researchers discovered a typosquatting threat, in which malicious actors register domains that closely mimic an already existing domain. This is often done by replacing symbols with other, similar looking ones, such as swapping the letter […]
Recent studies have revealed that Microsoft Entra ID (formerly Azure AD), a cloud-based identity and access management solution, can be exploited to bypass security protocols. Cybercriminals have found ways to manipulate the credential validation process, turning the pass-through authentication (PTA) agent into a tool that enables unauthorized access as any AD user. This opens up […]
A survey of 1,000 Americans has revealed attitudes and concerns toward AI technology. The survey found that most Americans cannot differentiate between AI voices and real voices — when asked whether a human voice was real or AI-generated, 2 out of 3 respondents incorrectly identified the authentic human voice as AI. Moreover, 81% of Americans […]
Cyberattacks targeted towards cybersecurity executives were analyzed in a recent report by GetApp. The report found that 72% of surveyed cybersecurity professionals in the U.S. have been targeted by cyberattacks in the past 18 months. The report also found that AI-generated deepfakes have been involved in 27% of the attacks. Over a third (37%) of […]
The Trump campaign experienced a hack that compromised some internal communications. Steven Cheung, a spokesperson for the Trump campaign, stated, “These documents were illegally obtained from foreign sources hostile to the United States, with the intention of interfering in the 2024 election and causing chaos in our democratic process. A new report from Microsoft revealed […]
DDoS attacks were examined in a recent report by Gcore. According to the report, there has been a sharp 46% increase in the number of DDoS attacks compared to the same period in 2023, with peak attack power measuring in terabits per second. The total number of attacks during H1 2024 reached 830,000, marking a […]
If you follow IT and cybersecurity news, you’ll be familiar with mentions of quantum computing, usually followed by something about post-quantum cryptography. In fact, just recently, NIST announced the formal approval of the first set of PQC standards, which will doubtless fuel more quantum apocalypse predictions in the news. Let’s take a very high-level look […]
We hate spam, we obviously will not spam you!
Copyright © TSP 2024. All rights reserved. Designed by Enovate LLC