Microsoft Adds Face Check to Entra Verified ID
Microsoft released the public preview of Face Check, which detects a user's liveness and compares appearance against existing documents such as a driver’s license to verify identity.
Cisco Adds New Security and AI Capabilities in Next Step Toward Cisco Networking Cloud Vision
IONIX Completes $42M Financing Round to Expand Threat Exposure Management Across the Entire Attack Surface
Verizon Employee Data Exposed in Insider Threat Incident
Tens of thousands of workers are effected by a fellow employee dipping into files that include everything from SSNs and names to union status and compensation data.
https://www.darkreading.com/remote-workforce/verizon-employee-data-exposed-insider-threat-incident
Critical Bugs in Canon Small Office Printers Allow Code Execution, DDoS
A grouping of serious printer bugs, unveiled at last summer's Pwn2Own, were patchless for months, but are finally fixed now.
Akamai Announces Content Protector to Stop Scraping Attacks
Post-Quantum Cryptography Alliance Launches to Advance Post-Quantum Cryptography
Crucial Airline Flight Planning App Open to Interception Risks
Airbus-owned NAVBLUE fixed the issue after a penetration testing firm disclosed the problem to the company.
https://www.darkreading.com/ics-ot-security/crucial-airline-flight-planning-app-interception-risks
Twin Max-Severity Bugs Open Fortinet's SIEM to Code Execution
Full 10s on the CVSS vulnerability severity scale have been assigned to two flaws discovered in Fortinet's FortiSIEM cybersecurity operations platform.
World Govs, Tech Giants Sign Spyware Responsibility Pledge
France, the UK, the US, and others will work on a framework for the responsible use of tools like NSO Group's Pegasus, and Shadowserver Foundation gains £1 million investment.
https://www.darkreading.com/endpoint-security/world-govs-sign-spyware-responsibility-pledge
'ResumeLooters' Attackers Steal Millions of Career Records
The cyberattackers used SQL injection and XSS to target 65 retail companies and job recruiters, stealing databases with unique emails and other sensitive records.
https://www.darkreading.com/remote-workforce/-resumelooters-attackers-steal-millions-career-records
UAE Cybersecurity Official Warns of VPN Abuse
More than six million VPNs are now deployed on devices in the United Arab Emirates.
https://www.darkreading.com/mobile-security/uae-cybersecurity-official-warns-of-vpn-abuse
Nigerian University Rolls Out Cybersecurity Degree Program
Nigerian University of Technology and Management plans to compete on the global cyber-education stage.
Check Point CEO to Step Down After 3 Decades
Gil Shwed will assume the position of executive chairman once a new CEO is appointed.
https://www.darkreading.com/endpoint-security/check-point-ceo-announces-intention-stand-down
How Neurodiversity Can Help Fill the Cybersecurity Workforce Shortage
Many people with ADHD, autism, dyslexia, and other neurodiverse conditions bring new perspectives that can help organizations solve cybersecurity challenges.
Automate Routine Operational Workflows With Generative AI
GenAI has the potential to revolutionize how organizations approach enterprise security, compliance, identity, and management processes.
Microsoft Azure HDInsight Bugs Expose Big Data to Breaches
Security holes in a big data tool could lead to big data compromise.
Google Open Sources AI-Boosted Fuzzing Framework
The fuzzing framework uses AI to boost code coverage and to speed up vulnerability discovery.
https://www.darkreading.com/application-security/google-open-sources-ai-boosted-fuzzing-framework
Google: Govs Drive Sharp Growth of Commercial Spyware Cos
Private spyware vendors were behind nearly half of all zero-day exploits in Google products since 2014.
Fresh 'Mispadu Stealer' Variant Emerges
Latest iteration of the malware appears aimed at targets in Mexico.
https://www.darkreading.com/endpoint-security/fresh-mispadu-stealer-variant-emerges