"GitGuardian is famous for its annual State of Secrets Sprawl report. In their 2023 report, they found over 10 million exposed passwords, API keys, and other credentials exposed in public GitHub commits. The takeaways in their 2024 report did not just highlight 12.8 million new exposed secrets in GitHub, but a number in the popular Python package repository PyPI."
"The club’s ticketing system was explicitly targeted, raising concerns over data security and the safety of fan information just as the Champions League quarter-finals loom on the horizon."
TLP1 : Green
"In collaboration with international partners, the Cybersecurity and Infrastructure Security Agency (CISA) has released comprehensive advisories to mitigate Living Off the Land (LOTL) attack techniques."
TLP1 : Green
"The tools that enable security researchers to intercept iOS and Android smartphones and apps like Chrome, Safari, WhatsApp, iMessage and other messaging protocols command a high price in millions of dollars. Crowdfense shared a price sheet for hacking tools (called 'zero-days') in the tech world. Check the prices here."
"A new report from a global cybersecurity company, Sophos, has revealed that cybercriminals are leveraging Remote Desktop Protocol in cyber attacks amounting to a 90 per cent usage."
TLP1 : Green
"The UK’s privacy regulator has warned social media and video sharing platforms that they must improve data protection practices to safeguard children using their services."
TLP1 : Green
"Microsoft has officially launched Copilot for Security, marking the advent of the first generative AI security product designed for widespread application.
This innovative tool empowers security and IT teams, enabling them to protect their digital assets with the speed and scalability only AI can offer."
"As Gmail celebrates its 20th anniversary, it’s an opportune moment to reflect on its journey from a simple email service to a cornerstone of digital communication, emphasizing its evolution, security enhancements, user base growth, and innovative features."
TLP1 : Green
"Apple users are falling prey to a sophisticated phishing campaign designed to hijack their Apple IDs through what’s known as a “push bombing” or “MFA fatigue” attack."
TLP1 : Green
