Bleeping Computer

FEBRUARY 26, 2024

The White House Office of the National Cyber Director (ONCD) urged tech companies today to switch to memory-safe programming languages, such as Rust, to improve software security by reducing the number of memory safety vulnerabilities. [.]

Software 124

Software 124

Penetration Testing

FEBRUARY 18, 2024

FullBypass A tool that bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell.

Penetration Testing 108

Penetration Testing 108

Security Boulevard

MARCH 21, 2024

The post Memory-safe languages and security by design: Key insights, lessons learned appeared first on Security Boulevard. One of the leaders in memory safety, Google, has released a new technical report containing some valuable lessons distilled from its experience tackling the problem.

Engineering 107

Engineering Software 107

Security Affairs

NOVEMBER 24, 2023

North Korea-linked Konni APT group used Russian-language Microsoft Word documents to deliver malware. FortiGuard Labs researchers observed the North Korea-linked Konni APT group using a weaponized Russian-language Word document in an ongoing phishing campaign. The Word document seems to be in the Russian language.

Encryption 118

Encryption Malware Phishing Hacking 118

Security Boulevard

DECEMBER 4, 2023

This cyber assault employs a Russian-language Microsoft Word document malware delivery as its weapon of choice, delivering a potent malware strain designed to harvest sensitive information from compromised Windows systems. Identifying The Konni […] The post Konni Malware Alert: Uncovering The Russian-Language Threat appeared first on TuxCare.

Malware 70

Malware Phishing Cybersecurity Cyber threats 70

Schneier on Security

OCTOBER 21, 2022

Here’s the latest: a training-time attack that forces the model to exhibit a point of view: Spinning Language Models: Risks of Propaganda-As-A-Service and Countermeasures.” Machine learning security is extraordinarily difficult because the attacks are so varied—and it seems that each new one is weirder than the next.

Media 225

Media Internet Internet Healthcare 225

Tech Republic Security

JANUARY 12, 2021

Whether you're trying to break into the role or you're already a cloud engineer, these programming languages are a must for maintaining an edge over the competition.

Engineering 186

Engineering 186

SecureBlitz

NOVEMBER 2, 2023

In our interconnected world, effective communication across languages is more important than ever. Google Translate is the key to breaking down these language barriers, and in this guide, we'll […] The post How To Translate On Google: A Comprehensive Guide for Language Enthusiasts appeared first on SecureBlitz Cybersecurity.

Cybersecurity 96

Cybersecurity 96

Digital Shadows

MAY 18, 2021

The post Examining Russian-language Cybercriminal Marketplaces first appeared on Digital Shadows. Our blogs have covered the fate of numerous cybercriminal marketplaces on the clear, deep, and dark web over the years.

Cybercrime 136

Cybercrime 136

CyberSecurity Insiders

DECEMBER 4, 2022

Google’s transition to more safe memory languages has brought down the security vulnerability count on Android from 223 in 2019 to just 83 in the current year. Android 13, released to the public in August this year, has been written in the new code of RUST programming language, an alternative to C/C++.

Mobile 128

Mobile Internet Internet Cybersecurity 128

Tech Republic Security

MARCH 30, 2021

KODA advising CTO John Suit discusses the skills and languages that are important for developers who want to build software and systems for modern robots.

Software 195

Software 195

Tech Republic Security

AUGUST 24, 2020

SecAdmins working to protect infrastructure, whether in a defensively or offensively, may find these programming languages helpful in safeguarding apps, systems, and hardware from threats.

207

207

Security Boulevard

JANUARY 16, 2022

The post XKCD ‘Language Development’ appeared first on Security Boulevard. via the comic artistry and dry wit of Randall Munroe , resident at XKCD !

104

104

Security Boulevard

JULY 17, 2023

The star of the moment is Large Language Models (aka LLMs), the foundational model that powers ChatGPT. The post Forbes Technology Council: Why Large Language Models (LLMs) Alone Won’t Save Cybersecurity appeared first on Security Boulevard. At its core, LLMs basically ingest A LOT of text (e.g.,

Technology 98

Technology Cybersecurity Internet Internet 98

Security Affairs

AUGUST 3, 2023

The OWASP Top 10 for LLM (Large Language Model) Applications version 1.0 OWASP released the OWASP Top 10 for LLM (Large Language Model) Applications project , which provides a list of the top 10 most critical vulnerabilities impacting LLM applications. is out, it focuses on the potential security risks when using LLMs.

Education 98

Education Risk Hacking Government 98

Schneier on Security

MARCH 8, 2022

Yet another method of surveillance : Radar can detect you moving closer to a computer and entering its personal space. This might mean the computer can then choose to perform certain actions, like booting up the screen without requiring you to press a button.

Surveillance 259

Surveillance Internet Internet Technology 259

Security Affairs

NOVEMBER 24, 2022

RansomExx ransomware is the last ransomware in order of time to have a version totally written in the Rust programming language. The operators of the RansomExx ransomware (aka Defray777 and Ransom X) have developed a new variant of their malware, tracked as RansomExx2, that was ported into the Rust programming language.

Ransomware 99

Ransomware Encryption Malware Manufacturing 99

Hack the Box

NOVEMBER 2, 2023

An overview of the best programming languages to learn depending on the cybersecurity role you’re looking for.

Cybersecurity 98

Cybersecurity 98

Threatpost

JULY 26, 2021

Polyglot malware authors are increasingly using obscure programming languages to evade detection. Sprechen Sie Rust?

Malware 135

Malware 135

CSO Magazine

JUNE 6, 2023

The Open Worldwide Application Security Project (OWASP) has published the top 10 most critical vulnerabilities often seen in large language model (LLM) applications, highlighting their potential impact, ease of exploitation, and prevalence.

Education 96

Education Risk 96

Security Boulevard

FEBRUARY 22, 2024

The post TEGWAR, AI and the FTC – Gov’t Agency Warns of Deceptive AI Contract Language appeared first on Security Boulevard. Data collection and use policies need to be reexamined because of AI. The FTC is trying to address the issue.

Data collection 67

Data collection Data privacy Risk Government 67

The Hacker News

JULY 8, 2022

That includes the fundamental languages used to code technology solutions. Progress powers technology forward. But progress also has a cost: by adding new capabilities and features, the developer community is constantly adjusting the building blocks. When the building blocks change, the code behind the technology solution must change too.

Technology 93

Technology 93

Penetration Testing

DECEMBER 15, 2023

Perl is a highly capable, feature-rich programming language with over 36 years of development.

Penetration Testing 87

Penetration Testing 87

SecureWorld News

JULY 27, 2021

The report looks into how threat actors are currently adapting, as they observed an increase in the use of uncommon programming languages. Blackberry has identified four uncommon programming languages that have seen an increase in their use for malicious intent: Go, D, Nim and Rust. Challenges of uncommon programming languages.

Malware 98

Malware Technology Engineering Cybersecurity 98

InfoWorld on Security

SEPTEMBER 13, 2022

The Rust Foundation , the non-profit shepherd of the Rust programming language , has formed a dedicated security team to assess and advance the security of the language. The team is intended to support the broader Rust community with the highest level of security talent and help ensure the reliability of the language.

74

74

The Hacker News

MARCH 12, 2021

Cybersecurity researchers have unwrapped an "interesting email campaign" undertaken by a threat actor that has taken to distributing a new malware written in Nim programming language. Malware developers may choose to use a rare programming language

Malware 124

Malware Cybersecurity 124

The Hacker News

NOVEMBER 23, 2023

A new phishing attack has been observed leveraging a Russian-language Microsoft Word document to deliver malware capable of harvesting sensitive information from compromised Windows hosts. This campaign relies on a remote access trojan

Phishing 79

Phishing Malware 79

BH Consulting

OCTOBER 2, 2023

Several experts believe we need to take a fresh look at the language we use in security. Victoria Baines has literally written the book about the language we often find in the industry, ‘ Rhetoric of Insecurity ’. Dr Barker, who’s a sociologist by training, said this language reinforces an unhelpful ‘us and them’ approach to security.

Cybersecurity 75

Cybersecurity Scams Cyber threats Security Awareness 75

InfoWorld on Security

JUNE 7, 2022

Aiming to help Rust developers discover and prevent security vulnerabilities, GitHub has made its suite of supply chain security features available for the fast-growing Rust language.

135

135

Security Boulevard

OCTOBER 11, 2023

Permalink The post Randall Munroe’s XKCD ‘Language Acquisition’ appeared first on Security Boulevard. via the comic artistry and dry wit of Randall Munroe, creator of XKCD!

62

62

Penetration Testing

NOVEMBER 27, 2023

Perl, a dynamic and versatile programming language, has been a mainstay in the software development realm for over three decades.

Penetration Testing 71

Penetration Testing Software 71

Malwarebytes

FEBRUARY 13, 2023

The rush to be the first to incorporate a similar large language model (LLM) into their own offerings (read: search engines) may have left a lot of opportunities to bypass the active restrictions such as bias, privacy concerns, and the difficulties with abstract concepts or lack of context.

Banking 82

Banking Artificial Intelligence VPN Engineering 82

Schneier on Security

MARCH 15, 2024

C++ guru Herb Sutter writes about how we can improve the programming language for better security. But if we focus on programming language safety alone, we may find ourselves fighting yesterday’s war and missing larger past and future security dangers that affect software written in any language.

Software 240

Software Cybersecurity 240

Hacker Combat

JULY 5, 2021

It indicates that cybercriminals leverage GoLang (programming language) to execute their malicious actions. The identified specimen indicates the same functions to FiveHands and HelloKitty and has its elements written in C++ language. Further, reverse-engineering under this programming language is nearly impossible.

Ransomware 132

Ransomware DNS Software Encryption 132

PCI perspectives

SEPTEMBER 26, 2023

Below Peggy Nolan , PCIP, CISA, CEO, Payment Card Assessments provides a preview of her presentation on Speaking the Same Language as Your Assessor. These events feature presentations from some of the sharpest minds in payment security. The PCI SSC Community Meetings are open to all in the payments industry.

111

111

Security Boulevard

MARCH 22, 2022

Complicated jargon and language barriers in the field of IT often mean only IT professionals can comprehend data privacy messages. The post The Role of Language Translation in Cyber Security and Data Privacy appeared first on Security Boulevard. Read more on cybersecurity and translation.

Data privacy 104

Data privacy Cybersecurity 104

Dark Reading

APRIL 7, 2023

Security teams need to find the best, most effective uses of large language models for defensive purposes.

105

105