The curl project plans to end its HackerOne bug bounty program at the end of January, citing a surge in low-quality AI-generated vulnerability reports
The developer of the popular curl command-line utility and library announced that the project will end its HackerOne security bug bounty program …
The curl project plans to end its HackerOne bug bounty program at the end of January, citing a surge in low-quality AI-generated vulnerability reports
The developer of the popular curl command-line utility and library announced that the project will end its HackerOne security bug bounty program …
Ubisoft reopens Rainbow Six Siege after shutting down the servers amid a breach exploiting the game's internal systems, and says the Marketplace remains closed
Ubisoft's Rainbow Six Siege (R6) suffered a breach that allowed hackers to abuse internal systems to ban and unban players …
CISA says it will extend funding to Mitre, which runs the CVE Program, and “there will be no lapse in critical CVE services”, after Mitre said funding expired
CISA says the U.S. government has extended MITRE's funding to ensure no continuity issues with the critical Common Vulnerabilities and Exposures (CVE) program.
Microsoft shares a technical overview of the CrowdStrike incident, explains why security products use Windows kernel drivers, and outlines planned improvements
Windows is an open and flexible platform used by many of the world's top businesses for high availability use cases where security and availability are non-negotiable.
CrowdStrike says a Falcon sensor configuration update on Windows triggered a logic error that resulted in a system crash and BSOD, remediated after 78 minutes
Thankfully, Macs weren't affected by last week's catastrophic … Anthony Ha / TechCrunch : TechCrunch Minute: What caused last week's major tech outage? CrowdStrike : Likely eCrime ...
Reeling from CrowdStrike-related outages, Delta has canceled 5,000+ flights, including 1,384 on Sunday and 700+ for Monday so far, according to FlightAware
Delta Air Lines (DAL.N) struggled to restore normal operations on Sunday after last week's crippling global cyber outage …
Microsoft estimates that CrowdStrike's update affected 8.5M Windows devices, or less than 1% of all Windows machines
On July 18, CrowdStrike, an independent cybersecurity company, released a software update that began impacting IT systems globally. Although this was not a Microsoft incident …
CrowdStrike says a sensor configuration update to Windows systems triggered a logic error that resulted in a system crash and BSOD on impacted systems
What Happened? — On July 19, 2024 at 04:09 UTC, as part of ongoing operations, CrowdStrike released a sensor configuration update to Windows systems.
The outage appears to have been caused by CrowdStrike pushing a faulty update to its Falcon software that causes Windows machines to get stuck in a boot loop
A profile of CrowdStrike, founded in 2011 and used by 300 companies in the Fortune 500; Gartner: CrowdStrike has ~15% of the global security software market
The little-known company is very popular in Corporate America, contributing to the severity of the global IT outage
How researchers recovered access to ~$2M worth of bitcoin stored in a software wallet, using a flaw in a decade-old version of the RoboForm password manager
Thanks to a flaw in a decade-old version of the RoboForm password manager and a bit of luck, researchers were able to unearth …
The FBI led an effort to dismantle the Qakbot botnet, which ransomware gangs used as an infection vector for years, on August 25 after infiltrating its network
It was live on 700k endpoints (!) which should give you an idea of the scale of cybersecurity woes at many orgs (it's still really, really bad out there). X: Nick Carr / @itsreally...
A profile of Window Snyder, who helped secure the early internet while at Microsoft and Mozilla, and pushed Apple to enable encryption by default in its devices
Snyder has made Windows, Mac computers, iPhones, and other technologies more secure for almost 25 years. Mastodon: @Weld@infosec.exchange and @kennwhite@mastodon.social . Bluesky: ...
In a campaign called #BlockTheBlue, some Twitter users, including popular ones like @dril, are asking people to block anyone who subscribes to Twitter Blue
After Elon Musk removed legacy verified users' checkmarks, Twitter's biggest users are blocking everyone who pays.
Twitter begins removing blue checkmarks from legacy verified accounts, fulfilling one of Elon Musk's long-stated plans; Musk has called the system “corrupt”
Elon already took away the blue check from some publications like the The New York Times … Caroline Giegerich : The Twitter check shakedown has begun. Twitter has officially begun...
Twitter begins removing blue checkmarks from legacy verified accounts, fulfilling one of Elon Musk's long-stated plans; Musk has called the system “corrupt”
The change is apparent on Twitter accounts for several Verge writers and other journalists like LA Times reporter Matt Pearce …
The Biden administration issues a national cybersecurity strategy, seeking to impose minimum standards, shift responsibility to larger software makers, and more
CyberScoop :
A researcher found a now-secure US DOD Azure database without a password for two weeks that had years' worth of military emails with sensitive personnel info
Sources: Twitter could make Twitter Blue a $20/month subscription that verifies users; staff have until November 7 to build the feature or face being fired
Now that he owns Twitter, Elon Musk has given employees their first ultimatum: Meet his deadline to introduce paid verification on Twitter or pack up and leave.