Hackers Could Have Remotely Controlled Kia Cars Using Only License Plates https://firewall.firm.in/wp-content/uploads/2024/09/car-hacking.png Sep 26, 2024Ravie LakshmananAutomotive Industry / Technology Cybersecurity researchers have disclosed a set of now patched vulnerabilities in Kia vehicles that, if successfully exploited, could have allowed remote control over key functions simply by using only a license plate. “These attacks could be executed remotely on any hardware-equipped ...

Mozilla Faces Privacy Complaint for Enabling Tracking in Firefox Without User Consent https://firewall.firm.in/wp-content/uploads/2024/09/firefox.png Sep 25, 2024Ravie LakshmananData Protection / Online Tracking Vienna-based privacy non-profit noyb (short for None Of Your Business) has filed a complaint with the Austrian data protection authority (DPA) against Firefox maker Mozilla for enabling a new feature called Privacy Preserving Attribution (PPA) without explicitly seeking users’ ...

Google’s Shift to Rust Programming Cuts Android Memory Vulnerabilities by 52% https://firewall.firm.in/wp-content/uploads/2024/09/android-rust.png Sep 25, 2024Ravie LakshmananSecure Coding / Mobile Security Google has revealed that its transition to memory-safe languages such as Rust as part of its secure-by-design approach has led to the percentage of memory-safe vulnerabilities discovered in Android dropping from 76% to 24% over a period of six years. ...

Agentic AI in SOCs: A Solution to SOAR’s Unfulfilled Promises https://firewall.firm.in/wp-content/uploads/2024/09/soc.png Security Orchestration, Automation, and Response (SOAR) was introduced with the promise of revolutionizing Security Operations Centers (SOCs) through automation, reducing manual workloads and enhancing efficiency. However, despite three generations of technology and 10 years of advancements, SOAR hasn’t fully delivered on its potential, leaving SOCs still grappling with many ...

Kaspersky Exits U.S., Automatically Replaces Software With UltraAV, Raising Concerns https://firewall.firm.in/wp-content/uploads/2024/09/ks.png Sep 24, 2024Ravie LakshmananAntivirus / National Security Antivirus vendor Kaspersky has formally begun pulling back its offerings in the U.S., migrating existing users to UltraAV, effective September 19, 2024, ahead of its formal exit at the end of the month. “Kaspersky antivirus customers received a software update facilitating the ...

Discover Latest Ransomware Tactics and Zero Trust Strategies in This Expert Webinar https://firewall.firm.in/wp-content/uploads/2024/09/ransomware.png Sep 24, 2024The Hacker NewsWebinar / Cybersecurity Ransomware is no longer just a threat; it’s an entire industry. Cybercriminals are growing more sophisticated, and their tactics are evolving rapidly. This persistent danger is a major concern for business leaders. But there’s good news: you don’t have to ...

U.S. Proposes Ban on Connected Vehicles Using Chinese and Russian Tech https://firewall.firm.in/wp-content/uploads/2024/09/car.png Sep 24, 2024Ravie LakshmananNational Security / Regulatory Compliance The U.S. Department of Commerce (DoC) said it’s proposing a ban on the import or sale of connected vehicles that integrate software and hardware made by foreign adversaries, particularly that of the People’s Republic of China (PRC) and Russia. “The ...

Necro Android Malware Found in Popular Camera and Browser Apps on Play Store https://firewall.firm.in/wp-content/uploads/2024/09/android-malware.png Sep 24, 2024Ravie LakshmananMobile Security / Malware Altered versions of legitimate Android apps associated with Spotify, WhatsApp, and Minecraft have been used to deliver a new version of a known malware loader called Necro. Kaspersky said some of the malicious apps have also been found on ...

Critical Flaw in Microchip ASF Exposes IoT Devices to Remote Code Execution Risk https://firewall.firm.in/wp-content/uploads/2024/09/chip-hacking.png Sep 23, 2024Ravie LakshmananIoT Security / Vulnerability A critical security flaw has been disclosed in the Microchip Advanced Software Framework (ASF) that, if successfully exploited, could lead to remote code execution. The vulnerability, tracked as CVE-2024-7490, carries a CVSS score of 9.5 out of a maximum ...

Why ‘Never Expire’ Passwords Can Be a Risky Decision https://firewall.firm.in/wp-content/uploads/2024/09/password.png Sep 23, 2024The Hacker NewsPassword Management / Data Breach Password resets can be frustrating for end users. Nobody likes being interrupted by the ‘time to change your password’ notification – and they like it even less when the new passwords they create are rejected by their organization’s password policy. IT ...