Geek-Guy.com

CISA unveils ‘Secure by Demand’ guidelines to bolster OT security

The US Cybersecurity and Infrastructure Security Agency (CISA), along with its international cybersecurity allies, has unveiled the “Secure by Demand” guidelines to safeguard operational technology (OT) environments. The framework provides a blueprint for OT owners and operators to prioritize cybersecurity when procuring digital products. This initiative addresses growing concerns about vulnerabilities in critical infrastructure, including…

Diese Unternehmen hat’s schon erwischt

Lesen Sie, welche Unternehmen in Deutschland aktuell von Cyberangriffen betroffen sind. Roman Samborskyi | shutterstock.com Sie denken, Ihre Sicherheitsmaßnahmen können Sie langfristig vor Cyberangriffen schützen? Oder dass Ihr Unternehmen zu klein und damit uninteressant für Hacker ist? Egal, ob Sie dem Mittelstand angehören, an der Börse gelistet sind oder zu den kritischen Infrastrukturen gehören: Jedes…

Large Language Models and Regulations: Navigating the Ethical and Legal Landscape

Leverage the full potential of Large Language Models (LLMs) for your business while staying compliant. The post Large Language Models and Regulations: Navigating the Ethical and Legal Landscape appeared first on Scytale. The post Large Language Models and Regulations: Navigating the Ethical and Legal Landscape appeared first on Security Boulevard.

Creator of Gas and tbh makes an app for disappearing photos via iMessage

Nikita Bier, creator of popular apps like the anonymous polling app tbh (acquired by Facebook) and the anonymous compliments app Gas (acquired by Discord), has created a new app called Explode, which focuses on disappearing messages on iMessage. Explode works as a mini app for Apple’s Messages app. It helps you send disappearing messages to…

The CFO may be the CISO’s most important business ally

CISOs frequently encounter inherent conflicts with business colleagues in their day-to-day responsibilities. In many ways, this is the nature of setting security policies for an organization. But the goal for CISOs should be to reset this dynamic and forge a strong, collaborative alliance with their critical leadership counterparts. Take the CFO, for example. For many…

Synthesia snaps up $180M at a $2.1B valuation for its B2B AI video platform

As the world continues to work through how to handle the explosion of deepfake content online, it seems that not all AI-created videos are stirring controversy. Synthesia, a London startup building products around highly realistic AI avatar technology, says it’s a big hit with enterprises, with some 60,000 of them — 1 million users —…

FBI Deletes PlugX Malware from 4,250 Hacked Computers in Multi-Month Operation

The U.S. Department of Justice (DoJ) on Tuesday disclosed that a court-authorized operation allowed the Federal Bureau of Investigation (FBI) to delete PlugX malware from over 4,250 infected computers as part of a “multi-month law enforcement operation.” PlugX, also known as Korplug, is a remote access trojan (RAT) widely used by threat actors associated with…

Stop wasting money on ineffective threat intelligence: 5 mistakes to avoid

Strong capabilities in cyber threat intelligence (CTI) can help take a cybersecurity program to the next level on many different fronts. When organizations choose quality sources of threat intelligence that are relevant to their technology environments and their business context, these external sources can not only power swifter threat detection but also help leaders better…

Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks

Cybersecurity researchers have disclosed multiple security flaws in SimpleHelp remote access software that could lead to information disclosure, privilege escalation, and remote code execution. Horizon3.ai researcher Naveen Sunkavally, in a technical report detailing the findings, said the “vulnerabilities are trivial to reverse and exploit.” The list of identified flaws is as follows –

Nelly raises $51 million to digitalize medical practices across Europe

Nelly wants to become the biggest fintech startup in the healthcare industry. The Berlin-based startup is already working with more than 1,200 medical practices in a handful of European countries. But there are thousands more that could benefit from an upgrade for their administrative workflows. That’s why Nelly recently raised €50 million in funding (around…

Google’s Willow Chip: Another Push to Start Your Post-Quantum Cryptography (PQC) Preparation Now

As 2024 drew to a close, Google caught global attention with the announcement of its latest quantum computing chip, Willow. Many believe that with Willow, Google has set a new benchmark for 2025, unveiling the extraordinary potential of quantum computing and what the quantum future could look like in the days ahead. If you think…

International effort erases PlugX malware from thousands of Windows computers

The US has again taken court-approved action to remove malware from privately-held internet-connected computers across the country, part of an effort by a number of countries to combat infections of a version of the PlugX malware from a Chinese-based group that has infected thousands of Windows machines around the world. PlugX is a remote access…

SEC sues Elon Musk for allegedly failing to disclose Twitter acquisition on time

The Securities and Exchange Commission filed a lawsuit against Elon Musk on Tuesday over an alleged securities violation relating to his acquisition of Twitter, now called X. The SEC claims Musk failed to disclose his 5% ownership stake of Twitter in a timely manner, violating federal securities law, according to a complaint filed in federal…

Nvidia backs MetAI, a Taiwanese startup that creates AI-powered digital twins

Nvidia has been doubling down on the opportunity to build robotics and other industrial AI applications, with the launch of its Omniverse platform, and most recently Mega, an Omniverse Blueprint framework to create digital twins to operate these applications. It’s also investing in digital twin startups to get the effort off the ground. Taiwan’s MetAI…

Fortinet confirms zero-day flaw used in attacks against its firewalls

Fortinet has confirmed the existence of a critical authentication bypass vulnerability in specific versions of FortiOS firewalls and FortiProxy secure web gateways. The flaw has been exploited in the wild since early December in what appears to be an indiscriminate and widespread campaign, according to cybersecurity firm Arctic Wolf. The fix for this zero-day is…

Microsoft: Happy 2025. Here’s 161 Security Updates

Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three “zero-day” weaknesses that are already under active attack. Redmond’s inaugural Patch Tuesday of 2025 bundles more fixes than the company has shipped in one go since 2017. Rapid7‘s Adam Barnett says January marks the fourth consecutive month…

Biden admin’s final rule banning Chinese connected cars also bars robotaxi testing on U.S. roads

The U.S. Department of Commerce announced a final rule Tuesday that would ban the sale or import of connected vehicles from China and Russia due to national security concerns. The rule would also bar Chinese car companies, such as WeRide and Pony AI, from testing self-driving cars on U.S. roads.  “China is trying to dominate…

ChatGPT: Everything you need to know about the AI-powered chatbot

ChatGPT, OpenAI’s text-generating AI chatbot, has taken the world by storm since its launch in November 2022. What started as a tool to supercharge productivity through writing essays and code with short text prompts has evolved into a behemoth with 300 million weekly active users. 2024 was a big year for OpenAI, from its partnership…

The Future of Cybersecurity: Global Outlook 2025 and Beyond

The cybersecurity landscape is entering an unprecedented era of complexity, with AI-driven threats, geopolitical tensions, and supply chain vulnerabilities reshaping how organizations approach digital security. This analysis explores key trends and strategic imperatives for 2025 and beyond. The post The Future of Cybersecurity: Global Outlook 2025 and Beyond appeared first on Security Boulevard.

Microsoft fixes 159 vulnerabilities in first Patch Tuesday of 2025

In its latest security update, Microsoft has addressed a total of 159 vulnerabilities, covering a broad spectrum of the tech giant’s products, including .NET, Visual Studio, Microsoft Excel, Windows components, and Azure services.  The update covers several critical and high-severity flaws across various systems, impacting Windows Telephony Services, Active Directory Domain Services, Microsoft Excel and…

Nintendo Switch 2 could be announced this week: The rumors (and facts) so far

With CES 2025 finally in the rearview, it’s time to move on to the next round of big hardware announcements. Rumors have emerged over the last few weeks, pointing to an imminent announcement for the next-generation of Nintendo’s wildly successful hybrid Switch console. In particular, word from industry stalwart Eurogamer (among others) pegs a January…

Intel spins off its corporate venture arm, Intel Capital, into a standalone fund

Intel says that it plans to spin off its corporate venture arm, Intel Capital, into a standalone fund, with Intel as an “anchor investor.” In a press release on Tuesday, Intel said that the move will “[enable] greater autonomy” and “the flexibility to attract external capital.” Intel expects Intel Capital to begin operating independently in…

Meta execs obsessed over beating OpenAI’s GPT-4 internally, court filings reveal

Executives and researchers leading Meta’s AI efforts obsessed over beating OpenAI’s GPT-4 model while developing Llama 3, according to internal messages unsealed by a court on Tuesday in one of the company’s ongoing AI copyright cases, Kadrey v. Meta. “Honestly… Our goal needs to be GPT-4,” said Meta’s VP of Generative AI, Ahmad Al-Dahle, in…

Unsafe Deserialization Attacks Surge | December Attack Data | Contrast Security

Attacks on individual applications were down month to month in December 2024, but one of the most dangerous types of attacks was up significantly. That’s according to data Contrast Security publishes monthly about the detection and response of real-world application and application programming interface (API) attacks with Application Detection and Response (ADR). What you’re about…

DJI Flip is a $439, fully foldable camera drone

Four short months after introducing the truly palm-size Neo, DJI is back with another pint-sized consumer drone. The Flip continues the drone giant’s interest in foldable form factors, with a quartet of propeller guards that essentially stack up, for maximum portability. The new Flip continues to blur the lines in DJI’s existing consumer portfolio, combing…

DEF CON 32 – Pick Your Poison: Navigating A Secure Clean Energy Transition

Authors/Presenters: Emma Stewart Our sincere appreciation to DEF CON, and the Authors/Presenters for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel. Permalink The post DEF CON 32 – Pick Your Poison: Navigating A Secure Clean Energy Transition appeared…

OpenAI appoints BlackRock exec to its board

OpenAI has appointed an executive at investment firm BlackRock to its board of directors. Adebayo “Bayo” Ogunlesi, a senior managing director at BlackRock and CEO of Global Infrastructure Partners, an infrastructure investing platform, has joined OpenAI’s board, OpenAI announced on Tuesday. In a statement, OpenAI board chairman Bret Taylor said that Ogunlesi has “an exceptional…

Substack rolls out livestreaming for all publishers

After testing live video features in the fall, newsletter platform Substack announced on Tuesday that it is now making livestreaming available to all publishers. This new feature allows creators to engage with their viewers and collaborate with other publishers.  The introduction of livestreaming indicates that Substack is following in the footsteps of other platforms like…

TikTok users’ attempted migration to Chinese app RedNote isn’t going too well

American TikTok users have been thumbing their collective noses at the U.S. government’s decision to ban TikTok by spitefully joining another Chinese social media app, Red Note (aka Xiaohongshu), sending it to the top of the U.S. App Store on Monday. Unfortunately, many of those who already made the transition have faced problems with having…

Flashpoint Releases Guide for Surviving Ransomware Activities

Cyber threat intelligence organization Flashpoint recently released its 2025 Ransomware Survival Guide. The ebook outlines the steps enterprises can take to manage and de-escalate ransomware activities. According to Flashpoint, the guide was aimed at equipping Cyber Threat Intelligence (CTI) professionals, threat hunters, and security leaders with actionable knowledge and insights to more effectively anticipate, prevent,…

CBRE buys remainder of co-working company Industrious at an $800M valuation

Real estate giant CBRE announced Tuesday that it is acquiring the rest of co-working startup Industrious, in which it already had a sizable investment, at a valuation of over $800 million. Founded in 2013, New York-based Industrious raised a total of $522 million in funding from investors including Riverwood Capital and Fifth Wall Ventures. Its last…

Biden administration opens up federal land to AI data centers

With less than a week left in office, President Joe Biden is not done leaving his mark on the AI industry. President Biden issued an executive order on Tuesday that will allow private sector AI companies to lease federal sites owned by the Department of Defense and Department of Energy in order to build AI…

ChatGPT now lets you schedule reminders and recurring tasks

Paying users of OpenAI’s ChatGPT can now ask the AI assistant to schedule reminders or recurring requests. The new beta feature, called tasks, will start rolling out to ChatGPT Plus, Team, and Pro users around the globe this week. With tasks, users can set simple reminders with ChatGPT such as, “Remind me when my passport…

Meta to cut roughly 5% of its workforce based on performance

Meta is reducing its workforce by about 5% through performance-based terminations, Bloomberg reported on Tuesday. The company plans to hire new people to fill the roles, CEO Mark Zuckerberg said in an internal memo to staff. “I’ve decided to raise the bar on performance management and move out low-performers faster,” Zuckerberg said in the note. “We…

Apple joins consortium to help develop next-gen AI data center tech

Apple has joined a consortium creating next-gen technology to link together chips in AI data centers. The consortium, the Ultra Accelerator Link Consortium, is developing a standard called UALink, which connects the AI accelerator chips found within a growing number of server farms. As of Tuesday, Apple is a member of the consortium’s board, along…

A 24-year-old who exited his first company to Coinbase raises $3M for his next venture

At 24 years old, Pryce Yebesi already has one exit: selling his crypto invoicing company Utopia Labs to Coinbase for an undisclosed amount.  Some founders don’t just have one company in them. On Monday, Yebesi announced the launch of his new company, Open Ledger, which embeds automated accounting software into products that enterprises and small…

Law enforcement action deletes PlugX malware from thousands of machines

U.S. and international law enforcement agencies have removed the PlugX malware from thousands of computers worldwide in a coordinated campaign to blunt the effectiveness of one of the most infamous pieces of malware used by malicious cyber actors. According to recently unsealed court documents from the Eastern District of Pennsylvania, the U.S. Department of Justice…

WhatsApp is adding a way to turn selfies into stickers

WhatsApp is adding new features including creating new stickers from selfies, sharing sticker packs, and adding new camera effects. Stickers and camera effects are good engagement ploys to keep users interacting with their contacts. The chat app added the ability to create custom stickers from photos last year. Now, the company is adding an option…

OpenAI quietly revises policy doc to remove reference to ‘politically unbiased’ AI

OpenAI has quietly removed language endorsing “politically unbiased” AI from one of its recently published policy documents. In the original draft of its “economic blueprint” for the AI industry in the U.S., OpenAI said that AI models “should aim to be politically unbiased by default.” A new draft, made available Monday, deletes that phrasing. When…

Microsoft Uncovers macOS Vulnerability CVE-2024-44243 Allowing Rootkit Installation

Microsoft has shed light on a now-patched security flaw impacting Apple macOS that, if successfully exploited, could have allowed an attacker running as “root” to bypass the operating system’s System Integrity Protection (SIP) and install malicious kernel drivers by loading third-party kernel extensions. The vulnerability in question is CVE-2024-44243 (CVSS score: 5.5), a medium-severity bug

Six Friends Every Security Team Needs

Around the year 1900, an author (Rudyard Kipling) wrote a poem called “The Elephant’s Child.” In it, he writes: “I keep six honest serving men They taught me all I knew Their names are What and Why and When And How and Where and Who.”  Little did Kipling know that these six friends would someday…

With $30 million in new funding, SEEQC thinks chips are key to building useful quantum computing

Nvidia CEO Jensen Huang may have said that “very useful quantum computers” are probably still 20 years away, but his company is also hedging its bets beyond classical chips with investments and partnerships in that very space. Now one of the companies that Nvidia partners with in quantum development is announcing funding. SEEQC, a quantum…

Beware cybersecurity tech that’s past its prime — 5 areas to check or retire

Cybersecurity leaders can choose from an ever-expanding list of digital tools to help them ward off attacks and, based on market projections, they’re implementing plenty of those options. Gartner predicts a 15% increase in cybersecurity spending for 2025, with global expenditures expected to reach $212 billion in the upcoming year. The research and consulting firm…

Aurora takes feds to court over safety rules as it nears self-driving truck launch 

Aurora Innovation is taking federal safety regulators to court in a case that could have far-reaching implications for self-driving truck companies operating in a regulatory environment designed around humans. The fight centers around the rather commonplace practice of placing physical warning triangles around semi trucks stopped along highways. The court denied Aurora’s request to be…

Google OAuth Vulnerability Exposes Millions via Failed Startup Domains

New research has pulled back the curtain on a “deficiency” in Google’s “Sign in with Google” authentication flow that exploits a quirk in domain ownership to gain access to sensitive data. “Google’s OAuth login doesn’t protect against someone purchasing a failed startup’s domain and using it to re-create email accounts for former employees,” Truffle Security…

Biden White House to go all out in final, sweeping cybersecurity order

The Biden administration’s last cybersecurity action is a comprehensive and ambitious 50-page executive order (EO) entitled “Strengthening and Promoting Innovation in the Nation’s Cybersecurity” that it plans to issue before the end of the week. According to the first section of the order, a draft copy of which was obtained by CSO, its purpose is…

EV startup Harbinger’s obsession with simplicity fuels $100M Series B

It’s not an easy time to raise money for an electric vehicle startup, especially given how many have failed or are close to failing. But Los Angeles-based Harbinger has pulled it off by taking an hyper-focused approach to electrifying commercial trucking.  The reward is a $100 million Series B, co-led by early Tesla investor Capricorn…

Decentralized Instagram alternative Pixelfed launches mobile apps

Pixelfed, a decentralized alternative to Instagram, has launched its official mobile apps. The service today runs on the same ActivityPub protocol that powers an open source X alternative Mastodon, a YouTube competitor PeerTube, and other decentralized social apps, including now Meta’s Threads and Flipboard (plus its newer app, Surf), that are part of a growing…

DEF CON 32 – SBOMs the Hard Way: Hacking Bob the Minion

Authors/Presenters: Larry Pesce Our sincere appreciation to DEF CON, and the Authors/Presenters for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel. Permalink The post DEF CON 32 – SBOMs the Hard Way: Hacking Bob the Minion appeared first…

Brad Perriott Joins SentinelOne as Area Vice President, Australia and New Zealand

SentinelOne (NYSE: S), a global leader in AI-powered security, today announced that Brad Perriott has joined its team as Area Vice President, Australia and New Zealand. In this role, the technology-industry veteran will lead a  regional team of sales representatives and spearhead the company’s efforts to expand and accelerate adoption of SentinelOne’s market-leading cybersecurity platform amongst…

Massachusetts senator seeks to extend deadline for TikTok ban

Senatory Ed Markey (D-Mass.) is planning to introduce legislation to extend the TikTok ban deadline by 270 days. TikTok has warned of a looming shutdown in just five days, but the new legislation, officially called the Extend the TikTok Deadline Act, would give TikTok more time to divest from its Chinese parent company ByteDance, if approved by Congress. TikTok…

OpenAI’s AI reasoning model ‘thinks’ in Chinese sometimes and no one really knows why

Shortly after OpenAI released o1, its first “reasoning” AI model, people began noting a curious phenomenon. The model would sometimes begin “thinking” in Chinese, Persian, or some other language — even when asked a question in English. Given a problem to sort out — e.g. “How many R’s are in the word ‘strawberry?’” — o1…

WordPress Appliance - Powered by TurnKey Linux