Election security is a topic that percolates to the forefront every couple of years, especially as US national elections hit the calendar. There have been more than 60 national elections in play around the world in 2024 and we’ve already seen a good deal of shenanigans by bad actors. While our minds may go initially […]
Author Archives: Onsite Computing, Inc.
The Open Worldwide Application Security Project (OWASP) lists the top 10 most critical vulnerabilities often seen in large language model (LLM) applications. Prompt injections, poisoned training data, data leaks, and overreliance on LLM-generated content are still on the list, while newly added threats include model denial of service, supply chain vulnerabilities, model theft, and excessive […]
The maintainers of the Jetpack WordPress plugin have released a security update to remediate a critical vulnerability that could allow logged-in users to access forms submitted by others on a site. Jetpack, owned by WordPress maker Automattic, is an all-in-one plugin that offers a comprehensive suite of tools to improve site safety, performance, and traffic […]
Cisco has confirmed to BleepingComputer that it is investigating recent claims that it suffered a breach after a threat actor began selling allegedly stolen data on a hacking forum. […] Go to Source Author: Lawrence Abrams
With cybercriminal gangs raking in at least $18 billion regionally — and much more globally — law enforcement and policymakers are struggling to keep up as the syndicates innovate and entrench themselves in national economies. Go to Source Author: Robert Lemos, Contributing Writer
Suspected nation-state actors are spotted stringing together three different zero-days in the Ivanti Cloud Services Application to gain persistent access to a targeted system. Go to Source Author: Dark Reading Staff
North Korean hackers are using a new Linux variant of the FASTCash malware to infect the payment switch systems of financial institutions and perform unauthorized cash withdrawals. […] Go to Source Author: Bill Toulas
The gaming company reports that the server has been rebuilt after the leak, but has not confirmed what kind of information was compromised. Go to Source Author: Dark Reading Staff
Education, including K-12 schools and universities, has become the third most targeted sector due to the high variety of sensitive data it stores in its databases. Go to Source Author: Dark Reading Staff
WordPress plugin Jetpack released a critical security update earlier today, addressing a vulnerability that allowed a logged-in user to access forms submitted by other visitors to the site. […] Go to Source Author: Bill Toulas