A new report from Palo Alto Networks Inc.’s Unit 42 warns of a new active campaign targeting exposed Amazon Web Services Inc. identity and access management credentials within public GitHub repositories. Dubbed “EleKtra-Leak,” the campaign is described as both sophisticated and concerning, the latter because of the widespread use of AWS services across the globe. EleKtra-Leak ...

A new report from cybersecurity company Inky Technology Corp. released today warns that bad actors are targeting streaming platforms amid the Hollywood actor’s strike. The Hollywood writers and actors’ strike, which started in July, has led to significant financial issues for many in the entertainment industry. Although writers have since returned to work, actors continue to be ...

A team of academic researchers has published a paper and website warning users about a security threat that exploits weaknesses in recent Apple Inc. devices that can be used to extract sensitive information from Apple’s Safar web browser. Dubbed “iLeakage,” the vulnerability exploits a “speculative execution” vulnerability in Safari installed on recent model Macs, iPads and iPhones with Apple A ...

Microsoft Corp.’s Incident Response and Threat Intelligence teams are warning that the hacking group that attacked MGM Resorts International Inc. and Caesars Entertainment Inc. in September is “one of the most dangerous financial criminal groups.” The hacks were undertaken by a hacking group Microsoft tracks as “Octo Tempest” but is also known by other security researchers as ...

Cloudflare Inc. today released its quarterly distributed denial-of-service report, which is led by yet another record-high DDoS attack. The record-breaking attack in question hit an unprecedented 201 million requests per second. The figure is notably higher than the previous largest recorded attack, which stood at 71 million rps and was detailed by Cloudflare in February. Along with ...

Cybersecurity and insurance platform startup Upfort today announced that it has raised $8 million in new funding to advance its goal to simplify the way brokers and insurers sell insurance and to shield its clients from cyberthreats. Founded in 2017 and previously known as Paladin Cyber, Upfort provides a platform that unifies security and cyber insurance ...

With artificial intelligence the biggest thing in technology in years, attackers and other miscreants are increasingly using AI to improve their attack techniques. In response to the rising threat, Google LLC today announced an expansion of its Vulnerability Rewards Program to encompass threats specific to generative artificial intelligence. Generative AI specializes in creating content that closely ...

Artificial intelligence security and trust software firm Cranium.ai Corp., which was spun off as a separate company from KPMG LLC in April, today announced that it has raised $25 million in new funding for innovation, research and development and business expansion. Founded in 2022 as part of KPMG’s startup incubator, KPMG Studio, Cranium offers enterprise AI security and ...

Machine learning cybersecurity firm Darktrace PLC today announced a new solution that provides comprehensive visibility of cloud architectures, real-time cloud-native threat detection and response, and prioritized recommendations and actions to help security teams manage misconfigurations and strengthen compliance. The new Darktrace/Cloud solution, based on a unique self-learning artificial intelligence, has been designed to address the issue wherein over 99% of ...

Artificial intelligence-powered software delivery solutions provider Digital.ai Software Inc. today announced the launch of Denali, the latest release of its DevSecOps platform that enhances security for web applications. Denali has been designed to allow companies to harness the potential of AI while addressing the complexities organizations need to overcome to deliver high-quality and secure software ...