• A Former OpenAI Leader Says Safety Has ‘Taken a Backseat to Shiny Products’ at the AI Company
  May 17, 2024
  Jan Leike, who ran OpenAI’s “Super Alignment” team, believes there should be more focus on preparing for the next generation of AI models, including on things like safety. The post A Former OpenAI Leader Says Safety Has ‘Taken a Backseat to Shiny Products’ at the AI Company appeared first on SecurityWeek.

• CISO Corner: What Cyber Labor Shortage?; Trouble Meeting SEC Disclosure Deadlines
  May 17, 2024
  Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included: DR's podcast on the CISO & the SEC; breaking down CISA's Secure by Design Pledge; Singapore puts cloud providers on notice.

(auto updated daily)

• Sophos Firewall v20 MR1 is now available
  May 15, 2024
  This fantastic update is free for all licensed Sophos Firewall customers.

(auto updated daily)

• Patch Tuesday, May 2024 Edition
  May 14, 2024
  Microsoft today released updates to fix more than 60 security holes in Windows computers and supported software, including two "zero-day" vulnerabilities in Windows that are already being exploited in active attacks. There are also important security patches available for macOS and Adobe users, and for the Chrome Web browser, which just patched its own zero-day […]

(auto updated daily)

• 'Dirty Stream' Floods Android With Malware
  May 17, 2024
  A new form of Android malware can hijack legitimate apps. "Dirty Stream" take advantage of a legitimate function designed to make life easier for users. The function is called ContentProvider and allows one mobile app to access data from, or communicate with, another app. It makes it possible to, for example, open a PDF attachment […]

(auto updated daily)

• The Week in Ransomware – May 17th 2024 – Mailbombing is back
  May 17, 2024
  This week was pretty quiet on the ransomware front, with most of the attention on the seizure of the BreachForums data theft forum. However, that does not mean there was nothing of interest released this week about ransomware. […]

(auto updated daily)

• Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking
  May 17, 2024
  The cryptojacking group known as Kinsing has demonstrated an ability to continuously evolve and adapt, proving to be a persistent threat by swiftly integrating newly disclosed vulnerabilities to the exploit arsenal and expand its botnet. The findings come from cloud security firm Aqua, which described the threat actor as actively orchestrating illicit cryptocurrency mining

(auto updated daily)

• The who, where, and how of APT attacks – Week in security with Tony Anscombe
  May 17, 2024
  This week, ESET experts released several research publications that shine the spotlight on a number of notable campaigns and broader developments on the threat landscape