Blog

Rilide browser extension steals MFA codes

Cryptocurrency thieves are targeting users of Chromium-based browsers – Google Chrome, Microsoft Edge, Brave Browser, and Opera – with an extension that steals credentials and can grab multi-factor authentication (MFA) codes. The malicious extension Dubbed Rilide by Trustwave researchers, the extension mimics the legitimate Google Drive extension while, in the background, it disables the Content Security Policy (CSP), collects system information, exfiltrates browsing history, takes screenshots, and injects malicious scripts. It aims to allow attackers … More → The post Rilide browser extension steals MFA codes appeared first on Help Net Security.
http://news.poseidon-us.com/Sm7c0z

Companies carry unquantified levels of risk due to current network security approaches

40% of senior cybersecurity decision makers effectively prioritize risks to Payment Card Industry Data Security Standard (PCI DSS) 4.0 compliance, according to Titania. The study highlights that oil and gas, telecommunications, and banking and financial services organizations are prime targets for threat actors that exploit vulnerable network device configurations to scale their attacks. It also reveals only 37% could ‘very effectively’ categorize and prioritize compliance risks that undermine the security of their networks. Network misconfigurations … More → The post Companies carry unquantified levels of risk due to current network security approaches appeared first on Help Net Security.
http://news.poseidon-us.com/Sm6Yz8

ISC Stormcast For Friday, April 7th, 2023 https://isc.sans.edu/podcastdetail.html?id=8444, (Fri, Apr 7th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
http://news.poseidon-us.com/Sm6Wtk

AI Metrology Colloquia Series

As a follow-on to the National Academies of Science, Engineering, and Medicine workshop on Assessing and Improving AI Trustworthiness and the National Institute of Standards and Technology (NIST) workshop on AI Measurement and Evaluation, NIST has
http://news.poseidon-us.com/Sm5WLq

English language pushes everyone — even AI chatbots — to improve by adding

A linguistic bias in the English language that leads us to ‘improve’ things by adding to them, rather than taking away, is so common that it is even ingrained in AI chatbots, a new study reveals.
http://news.poseidon-us.com/Sm4y5C

Google Play apps will allow users to initiate in-app account deletion

Google Play will be pushing Android app developers to allow users to delete their account and associated data from within the app. Users will also be given the option to only delete data where applicable, as some data needs to be retained for security, fraud prevention, or regulatory reasons. Google’s new app account and data deletion requirements Google Play has introduced new app account deletion requirements and added Data deletion questions to developers’ Data safety … More → The post Google Play apps will allow users to initiate in-app account deletion appeared first on Help Net Security.
http://news.poseidon-us.com/Sm4mK6

Cisco completes fix for critical Telepresence server bug

Coming “late April”.
http://news.poseidon-us.com/Sm3h88

State Library of Victoria creates chief digital officer role

Pursues long-term goal of making its entire collection remotely accessible.
http://news.poseidon-us.com/Sm3h4X

Microsoft Rolls Out ‘Learning Rooms’ with Support from Experts

Microsoft announced new Learning Rooms, a free online space to connect with technical experts and other students learning Microsoft products, in this Tuesday announcement.
http://news.poseidon-us.com/Sm2fp2

Navy to deploy unmanned vessels, AI in region where it’s struggled to meet demand for ships

The Navy’s expansion of unmanned systems follows experimentation work it’s been conducting in the Middle East, where it’s combined drones with sensors connected together in a resilient mesh network.
http://news.poseidon-us.com/Sm23zN