Dangerous Google Chrome Zero-Day Allows Sandbox Escape
Exploit code is circulating for CVE-2024-4761, disclosed less than a week after a similar security vulnerability was disclosed as being used in the wild.
DNS Tunneling Abuse Expands to Tracking & Scanning Victims
Several campaigns are leveraging the evasive tactic to provide useful insights into victims' online activities and find new ways to compromise organizations.
House lawmakers introduce bill to help election workers prepare for AI threats
Four House lawmakers have introduced bipartisan legislation that would require the National Institute of Standards and Technology and the Election Assistance Commission to jointly develop a report that would provide voluntary guidelines for election...
Most organizations' enterprise PCs fail to meet basic endpoint protection, patching requirements
A new Absolute Security report found that many organizations are failing to ensure that the endpoint protection platforms and network access security applications on their managed PCs are running in compliance with basic security policies, reports...
The MITRE Corporation has launched EMB3D, a new threat-modeling framework designed for embedded devices in critical infrastructure environments, reports The Hacker News.
State-sponsored hackers suspected in cyberattack on British Columbia government
British Columbia, the westernmost province of Canada, has experienced "sophisticated cybersecurity incidents" that are thought to be the result of state-sponsored hackers targeting government networks, reports The Record, a news site by cybersecurity...