admin – Page 7 – Computer Security Articles

Credit to Author: BrianKrebs| Date: Thu, 24 Jul 2025 17:57:06 +0000

KrebsOnSecurity recently heard from a reader whose boss’s email account got phished and was used to trick one of the company’s customers into sending a large payment to scammers. An investigation into the attacker’s infrastructure points to a long-running Nigerian cybercrime group that is actively targeting established companies in the transportation and aviation industries.

Independent Krebs

July 25, 2025 admin

Microsoft Fix Targets Attacks on SharePoint Zero-Day

Credit to Author: BrianKrebs| Date: Mon, 21 Jul 2025 14:45:46 +0000

On Sunday, July 20, Microsoft Corp. issued an emergency security update for a vulnerability in SharePoint Server that is actively being exploited to compromise vulnerable organizations. The patch comes amid reports that malicious hackers have used the Sharepoint flaw to breach U.S. federal and state agencies, universities, and energy companies.

Fortinet Security

July 25, 2025 admin

Inside The ToolShell Campaign

FortiGuard Labs uncovers ToolShell, a sophisticated exploit chain targeting Microsoft SharePoint servers using a mix of patched and zero-day CVEs. Learn how attackers deploy GhostWebShell and KeySiphon for stealthy remote code execution and credential theft.

Fortinet Security

July 25, 2025 admin

Sovereign SASE: A New Model for Data-Sensitive Enterprises

Sovereign SASE enables organizations to meet data residency, privacy, and operational requirements without compromising security, user experience, or scalability.

Fortinet Security

July 25, 2025 admin

A Special Mission to Nowhere

Following the Israel-Iran ceasefire, FortiGuard Labs uncovered a phishing campaign posing as a private jet evacuation service from Tel Aviv to New York. Learn how attackers used crisis-driven fear to steal personal and financial data.

Fortinet Security

July 25, 2025 admin

FortiOS: A Quantum Leap in Future-Proofing Security

Fortinet is once again delivering cutting-edge innovations to protect against emerging threats by rolling out quantum-safe features to FortiOS.

Independent Krebs

July 25, 2025 admin

Poor Passwords Tattle on AI Hiring Bot Maker Paradox.ai

Credit to Author: BrianKrebs| Date: Fri, 18 Jul 2025 01:23:20 +0000

Security researchers recently revealed that the personal information of millions of people who applied for jobs at McDonald’s was exposed after they guessed the password (“123456”) for the fast food chain’s account at Paradox.ai, a company that makes artificial intelligence based hiring chatbots used by many Fortune 500 companies. Paradox.ai said the security oversight was an isolated incident that did not affect its other customers, but recent security breaches involving its employees in Vietnam tell a more nuanced story.

Independent Krebs

July 25, 2025 admin

DOGE Denizen Marko Elez Leaked API Key for xAI

Credit to Author: BrianKrebs| Date: Tue, 15 Jul 2025 01:23:43 +0000

Marko Elez, a 25-year-old employee at Elon Musk’s Department of Government Efficiency (DOGE), has been granted access to sensitive databases at the U.S. Social Security Administration, the Treasury and Justice departments, and the Department of Homeland Security. So it should fill all Americans with a deep sense of confidence to learn that Mr. Elez over the weekend inadvertently published a private key that allowed anyone to interact directly with more than four dozen large language models (LLMs) developed by Musk’s artificial intelligence company xAI.