article thumbnail

Microsoft Patch Tuesday, November 2024 Edition

Krebs on Security

The zero-day flaw tracked as CVE-2024-49039 is a bug in the Windows Task Scheduler that allows an attacker to increase their privileges on a Windows machine. Narang notes that CVE-2024-43451 is the third NTLM zero-day so far this year. Microsoft credits Google’s Threat Analysis Group with reporting the flaw. 10 is the worst).

article thumbnail

Internet Archive data breach impacted 31M users

Security Affairs

The Internet Archive disclosed a data breach, the security incident impacted more than 31 million users of its “The Wayback Machine.” As of September 5, 2024, the Internet Archive held more than 42.1 Internet Archive hacked. million print materials, 13 million videos, 1.2 54% were already in @haveibeenpwned.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Robot Dog Internet Jammer

Schneier on Security

“NEO carries an onboard computer and antenna array that will allow officers the ability to create a ‘denial-of-service’ (DoS) event to disable ‘Internet of Things’ devices that could potentially cause harm while entry is made.” ” Slashdot thread.

Internet 340
article thumbnail

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

Continuing our look back at 2024, part two of Last Watchdogs year-ender roundtable turns its focus to emerging threats vs. evolving defense tactics. This has fueled rapid adoption of autonomous AI agents, which matured significantly in 2024 and will become mainstream in 2025. The drivers are intensifying. million (NIST, WEF).

article thumbnail

Internet Archive was breached twice in a month

Security Affairs

The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The Internet Archive was breached via Zendesk, with users receiving warnings about stolen GitLab tokens due to improper token rotation after repeated alerts.

Internet 129
article thumbnail

Hi, robot: Half of all internet traffic now automated

Malwarebytes

If you sometimes feel that the internet isn’t the same vibrant place it used to be, you’re not alone. Bad bots comprised 37% of internet traffic in 2024, up from 32% the year prior. Good bots accounted for just 14% of the internet’s traffic. Bad bots do all kinds of unpleasant things.

Internet 144
article thumbnail

Why Phishers Love New TLDs Like.shop,top and.xyz

Krebs on Security

Phishing attacks increased nearly 40 percent in the year ending August 2024, with much of that growth concentrated at a small number of new generic top-level domains (gTLDs) — such as.shop ,top ,xyz — that attract scammers with rock-bottom prices and no meaningful registration requirements, new research finds.