The exploit, which is an XSS vulnerability, allows players to display GIFs using HTML code blocks in-game. This poses a potential security threat to players, as the exploit can access player IP addresses and potentially execute code on their PCs.
Clearview AI has reached a settlement in a class-action privacy lawsuit, which alleged that the company violated Illinois’ Biometric Information Privacy Act (BIPA) by using online images without consent for its facial recognition technology.
Researchers have discovered nearly a thousand fake profiles created with the intention of reaching out to companies in the Middle East. These profiles, often difficult to distinguish from real ones, have been successful in their campaigns.
According to Synopsys, the use of automated security technology is on the rise, as organizations increasingly embrace the “shift everywhere” philosophy to improve the effectiveness and reduce the cost of security activities.
The White House plans to collaborate with the Department of Health and Human Services to establish minimum cybersecurity standards to protect the healthcare sector from ransomware and other cyber threats.
Henry Schein has notified Maine’s attorney general that the personal information of over 29,000 people may have been accessed in a cyber incident in September. The hackers obtained names, financial account information, and security codes.
Amazon has taken legal action against an underground refund scheme called REKK, involving an international fraudulent organization and former Amazon employees, resulting in the theft of millions of dollars worth of products.
The National Cybersecurity Authority will coordinate and implement policies and measures to enhance Greece’s cybersecurity ecosystem and effectively prevent and manage cyberattacks.
Apple has released security patches for various devices and software, including iOS, iPadOS, macOS, tvOS, watchOS, and Safari. These patches address multiple security flaws, including two recently disclosed zero-day vulnerabilities.
Kubescape, an open-source project, has become the first to generate Vulnerability Exploitability eXchange (VEX) documents. VEX is a standard that helps share information about vulnerabilities and their potential for exploitation.