Google issues red alert as new cyber attack targets Gmail users using AI with ‘indirect prompt injections’

Google warns its 1.8 billion Gmail users about a new cybersecurity threat called indirect prompt injections, where hackers hide malicious commands in emails. Google warns of wave of new threats This threat affects not just people but also businesses and governments, in a post Google explained the danger, “With the rapid adoption of generative AI,…

Read More

Pharmaceutical firm Inotiv investigating ransomware attack

American contract research organization Inotiv disclosed Monday that it became aware of a cybersecurity incident affecting certain of its systems and data earlier this month. Its preliminary investigation determined that a threat actor gained unauthorized access to, and encrypted certain of, the company’s systems, while investigations into the incident are ongoing. “Upon identifying encrypted systems, the…

Read More

Financial impact from severe OT related threats rise to $300B

$330 Billion OT Cyber Risk impacting business at large OT networks under active attack due to critical RCE flaw Attackers are exploiting a critical remote code execution (RCE) vulnerability in the Erlang programming language’s Open Telecom Platform, widely used in OT networks and critical infrastructure. The flaw enables unauthenticated users to execute commands through SSH…

Read More

Accenture announces the acquisition of Australian cyber security operator CyberCX, to boost APEC cyber offerings

Accenture has announced the acquisition of Australian cyber security operator CyberCX, a move the company said will boost its security offerings in the Asia-Pacific region. “Client demand for cyber security services is accelerating as data and digital environments become increasingly connected and heightened threats are exposed across operational value chains, supply chains and the enterprise….

Read More

CISA warns of N-able N-central flaws exploited in zero-day attacks

CISA warned on Wednesday that attackers are actively exploiting two security vulnerabilities in N‑able’s N-central remote monitoring and management (RMM) platform. N-central is commonly used by managed services providers (MSPs) and IT departments to monitor, manage, and maintain client networks and devices from a centralized web-based console. According to CISA, the two flaws can allow…

Read More

SonicWall offers 8 new firewalls, expands cyber warranty, embedded Zero Trust Network Access (ZTNA)

The Generation 8 portfolio includes multi-gigabit connectivity even for lower-end desktop models, a new unified management platform. An AI assistant to help administrators with common queries and device management tasks. SonicWall is growing its Gen8 hardware portfolio with new firewalls designed to better handle evolving network security needs. The SonicWall update spans both the desktop…

Read More

Nvidia backs off against Chinese accusations its H20 chips pose a security risk

Nvdia push  response to allegations from Chinese state media that its H20 artificial intelligence chips are a national security risk for China. Earlier in the day, Reuters reported Yuyuan Tantian, an account affiliated with Chinese state broadcaster CCTV, said in an article published on WeChat that the Nvidia H20 chips are not technologically advanced or environmentally…

Read More

Palo Alto’s $25 billion deal for CyberArk targets rising AI-driven threats

Inks biggest deal to build out identify security business Growing AI threats boost interest, consolidation Palo Alto shares fall 8% on integration concerns  Palo Alto Networks will buy Israeli peer CyberArk Software for about $25 billion, in its biggest deal yet, as CEO Nikesh Arora seeks to build a comprehensive cybersecurity provider to tap into rising…

Read More

ReVault flaws let hackers bypass Windows login on Dell laptops

The five critical vulnerabilities were named “ReVault” by Talos, and are found in Broadcom’s ControlVault3 firmware, as well as associated Windows application programming interfaces (APIs) on a range of Dell business laptops. On June 13, Dell disclosed these vulnerabilities impacting Dell Pro, Latitude, and Precision laptop models. ControlVault3 is a hardware-based security module found in…

Read More

KLM confirms a data breach exposing customer info via third-party system,

KLM Airlines (aka KLM Royal Dutch Airlines), a French-Dutch multinational airline, has notified customers about a recent data breach that exposed certain personal details after a third-party system the company relies on was accessed by an unauthorised party. The breach did not affect core systems or more sensitive data, but it still involves information that…

Read More