DESTAQUES

Últimas Notícias

2545 notícias
Gestão de Riscos The Hacker News 🇺🇸

Writer AI Flaw Could Let Agent Previews Leak Session Tokens Across Tenants

Cybersecurity researchers have disclosed details of a now-patched critical session isolation vulnerability in Writer, an enterprise generative artificial intelligence (AI) platform, that could result in cross-tenant compromise. The one-click vulnerability has been codenamed Writ…

Governança & IA The Hacker News 🇺🇸

What Changes When Your Software Supply Chain Includes AI Writing Your Code?

Software supply chain security was hard enough. Then AI joined the build pipeline. For five years, "software supply chain security" meant one question: what's in your code? Which open-source packages, which versions, which transitive dependencies three layers deep that nobody ch…

Compliance & Regulação HIPAA Clicks 🇺🇸

Small Practice Owners Guide to HIPAA Compliance Programs

A small practice owner carries legal responsibility for HIPAA compliance regardless of who performs the day-to-day compliance tasks, which means […] The post Small Practice Owners Guide to HIPAA Compliance Programs appeared first on The HIPAA Journal.

Ameaças Cibernéticas The Hacker News 🇺🇸

Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities

A suspected China-aligned threat activity cluster has been observed exploiting Roundcube webmail software belonging to physics and engineering departments of U.S. and Canadian universities as part of a new campaign. The activity involves the exploitation of now-patched, critical…

Ameaças Cibernéticas The Hacker News 🇺🇸

CERT/CC Warns of Hidden Admin Backdoor in Tenda Router Firmware

Several versions of firmware released by Chinese network device manufacturer Tenda have been found to embed an undocumented authentication backdoor that enables administrative access to the devices' web management interfaces, the CERT Coordination Center (CERT/CC) warned Monday. …

Ameaças Cibernéticas The Hacker News 🇺🇸

BeyondTrust Patches Critical Auth Bypass Flaws in Remote Support and PRA

BeyondTrust has released updates to address two critical security flaws affecting Remote Support (RS) and Privileged Remote Access (PRA) products that, if successfully exploited, could allow unauthenticated attackers to take control of susceptible devices. The vulnerabilities ar…

Link copiado!