Geek-Guy.com

Category: Uncategorized

Europe, Global Security News, hornetsecurity, Mergers and Acquisitions, Microsoft 365, Money, proofpoint, thoma bravo, Uncategorized

Proofpoint to acquire Hornetsecurity for over $1 billion

Proofpoint has entered into an agreement to acquire Hornetsecurity Group, a Germany-based provider of Microsoft 365 security services, in a deal reportedly valued at more than $1 billion. The acquisition, described as the largest in Proofpoint’s history, comes amid accelerating consolidation in the cybersecurity industry as companies seek to broaden their offerings to enterprise customers…

Read more →

Global Security News, Security Bloggers Network, Uncategorized

Seceon Wins Three Global Infosec Awards at RSAC 2025

At Seceon, we’ve always believed that solving cybersecurity isn’t about adding more tools but building smarter ones. That belief was validated in a big way this year at RSAC 2025, where we proudly took home three Global Infosec Awards. 🏆 Best Comprehensive Cybersecurity Platform🏆 Best SMB Managed Security Services Platform (for aiSecurity-CGuard)🏆 Best XDR Platform…

Read more →

Data Privacy, Data Security, Global Security News, inrupt, privacy, Schneier news, Security Bloggers Network, Uncategorized

Privacy for Agentic AI

Sooner or later, it’s going to happen. AI systems will start acting as agents, doing things on our behalf with some degree of autonomy. I think it’s worth thinking about the security of that now, while its still a nascent idea. In 2019, I joined Inrupt, a company that is commercializing Tim Berners-Lee’s open protocol…

Read more →

cryptography, Global Security News, Homomorphic Encryption, Reports, Security Bloggers Network, Uncategorized

NCSC Guidance on “Advanced Cryptography”

The UK’s National Cyber Security Centre just released its white paper on “Advanced Cryptography,” which it defines as “cryptographic techniques for processing encrypted data, providing enhanced functionality over and above that provided by traditional cryptography.” It includes things like homomorphic encryption, attribute-based encryption, zero-knowledge proofs, and secure multiparty computation. It’s full of good advice. I…

Read more →

AutoSecT, cyber security, Global Security News, Security Bloggers Network, Uncategorized

Use AI-Driven Reconnaissance to Identify Cyber Threats

Surviving in the digital world is not about stopping the next attack. It’s about preventing any new attack from surfacing. It’s about cyberdefense – predictively and not just reactively. Like the time when GPS revolutionized navigation by showing us what lies ahead, today, AI-Driven Reconnaissance provides security teams a real-time, evolving map of threats before…

Read more →

Global Security News, News Alerts, SBN News, Security Bloggers Network, Top Stories, Uncategorized

News alert: Case dismissed against VPN executive, affirms no-logs policy as a valid legal defense

Toronto, Canada, Apr. 28, 2025, CyberNewswire — Windscribe, a globally used privacy-first VPN service, announced today that its founder, Yegor Sak, has been fully acquitted by a court in Athens, Greece, following a two-year legal battle in which Sak … (more…) The post News alert: Case dismissed against VPN executive, affirms no-logs policy as a…

Read more →

Asia Pacific, Cybersecurity, Global Security News, hacking, Infrastructure, Sponsored Content, Uncategorized

To Catch A Thief | Rubrik

For this special live recording of To Catch a Thief at The New York Stock Exchange, host and former lead cybersecurity and digital espionage reporter for The New York Times, Nicole Perlroth sits down with those who have been directly targeted by, traced, or directly engaged China’s state-sponsored hackers, diplomatically, or in the cyber domain:…

Read more →

academic papers, AI, Exploits, Global Security News, Physical Security, Security Bloggers Network, threat models, Uncategorized

Regulating AI Behavior with a Hypervisor

Interesting research: “Guillotine: Hypervisors for Isolating Malicious AIs.” Abstract:As AI models become more embedded in critical sectors like finance, healthcare, and the military, their inscrutable behavior poses ever-greater risks to society. To mitigate this risk, we propose Guillotine, a hypervisor architecture for sandboxing powerful AI models—models that, by accident or malice, can generate existential threats…

Read more →

Asia Pacific, Global Security News, Uncategorized

Outside experts pick up the slack on safety testing on OpenAI’s newest model release

GPT-4.1, the latest family of generative AI models from OpenAI, was released earlier this month with promised improvements around coding, instruction following and context. It’s also the first model released by the company since it announced changes to the way it tests and evaluates products for safety. Unlike its previous fine-tuned models, OpenAI did not…

Read more →

Global Security News, News Alerts, SBN News, Security Bloggers Network, Top Stories, Uncategorized

News alert: AcceleTrex unveils referral exchange that turns trusted conversations into scalable growth

Miami, FL, Apr. 14, 2025 — Today, AcceleTrex Corporation officially emerged from stealth, unveiling a first-of-its-kind platform that transforms expert referrals into a powerful growth engine for innovators. Grounded in the belief that genuine relationships drive meaningful results, AcceleTrex combines … (more…) The post News alert: AcceleTrex unveils referral exchange that turns trusted conversations into scalable growth first appeared…

Read more →

CALEA, Cybersecurity, eavesdropping, Exploits, Global Security News, national security policy, Security Bloggers Network, Telecom, Uncategorized

Arguing Against CALEA

At a Congressional hearing earlier this week, Matt Blaze made the point that CALEA, the 1994 law that forces telecoms to make phone calls wiretappable, is outdated in today’s threat environment and should be rethought: In other words, while the legally-mandated CALEA capability requirements have changed little over the last three decades, the infrastructure that…

Read more →

Global Security News, Technology, Uncategorized

Google Is Helping the Trump Administration Deploy AI Along the Mexican Border

Five years after Google Cloud CEO Thomas Kurian assured employees that the company was “not working on any projects associated with immigration enforcement at the southern border,” federal contract documents reviewed by The Intercept show that the tech giant is at the center of project to upgrade the so-called virtual wall. U.S. Customs and Border…

Read more →

Exploits, Global Security News, Uncategorized

DOJ charges hacker for 2021 Texas GOP website defacement

The Department of Justice unsealed charges against Canadian citizen Aubrey Cottle, a hacker who goes by the handle “Kirtaner,” for a 2021 incident that resulted in the defacement of the Texas Republican Party’s website. Prosecutors have charged Cottle, an early member of the hacktivist group Anonymous, for the defacement, as well as downloading contents from…

Read more →

Global Security News, Identity & Access, identity access management, Security Bloggers Network, Uncategorized

The rise of identity and access management: How IAM evolved to being the new perimeter of cybersecurity

The story of Identity and Access Management (IAM) could be made into a movie with all the drama. The industry and its players have gone from behind-the-scenes underdogs to starring roles. IAM, once just a part of IT, is now arguably the essential element in the security strategies of every organization today, navigating through a……

Read more →

CIA, Department of Defense (DOD), Global Security News, ODNI, signal, Uncategorized

Intelligence chiefs insist Signal chat was a simple mistake

U.S. intelligence leaders found themselves under intensified scrutiny from Congress for a second straight day, following revelations that significant military plans were discussed over text messaging application Signal.  Both Director of National Intelligence Tulsi Gabbard and CIA Director John Ratcliffe apologized during a House Intelligence Committee hearing Wednesday, yet continued to claim that no sources,…

Read more →

Cybersecurity, Exploits, Global Security News, Government, Uncategorized

Despite challenges, the CVE program is a public-private partnership that has shown resilience

In 1999, Dave Mann and Steve Christey, two researchers from the nonprofit R&D corporation MITRE,  debuted a concept for security vulnerabilities that laid the groundwork for the common vulnerability and exposures framework (CVE) that organizes information around computer vulnerabilities. Twenty-five years later, the CVE program, which assigns a unique record to each reported vulnerability, is…

Read more →

Global Security News, Security Bloggers Network, Uncategorized

Maximising network penetration testing’s effectiveness

Businesses rely heavily on their IT networks to store, process and transmit sensitive data.   As cyber threats evolve and increase in sophistication, securing your network has become more critical than ever.   Network penetration testing is one of the most effective ways to achieve this. It involves simulating real-world attacks on your network to uncover weaknesses……

Read more →

Asia Pacific, china, cyberattack, cyberespionage, Cyberlaw, espionage, Global Security News, hacking, law enforcement, Security Bloggers Network, Threats & Breaches, Uncategorized

Silk Typhoon Hackers Indicted

Lots of interesting details in the story: The US Department of Justice on Wednesday announced the indictment of 12 Chinese individuals accused of more than a decade of hacker intrusions around the world, including eight staffers for the contractor i-Soon, two officials at China’s Ministry of Public Security who allegedly worked with them, and two…

Read more →

Apache Cassandra, Chainguard, Cybersecurity, encryption, FIPS, Global Security News, Java, open source, secure by design, Technology, Uncategorized

Chainguard’s FIPS-compliant Cassandra addresses security demand of federal and regulated markets

Open-source software security firm Chainguard announced Wednesday that it is now building FIPS-validated images for Apache Cassandra, achieving what it describes as a first-of-its-kind accomplishment in the open-source community.  The project enables organizations in regulated industries — including government, health care, and finance — to deploy Cassandra with cryptographic libraries compliant with the National Institute…

Read more →

academic papers, AI, Global Security News, LLM, Security Bloggers Network, Uncategorized

“Emergent Misalignment” in LLMs

Interesting research: “Emergent Misalignment: Narrow finetuning can produce broadly misaligned LLMs“: Abstract: We present a surprising result regarding LLMs and alignment. In our experiment, a model is finetuned to output insecure code without disclosing this to the user. The resulting model acts misaligned on a broad range of prompts that are unrelated to coding: it…

Read more →

Cybercrime, Cybersecurity, data theft, encryption, extortion, Global Security News, Incident Response, Palo Alto Networks, Ransomware, Research, Threats, Uncategorized, Unit 42

Threat actors are increasingly trying to grind business to a halt

Cybercriminals intentionally disrupted operations at a growing rate last year, Palo Alto Networks’ threat intelligence firm Unit 42 said in an annual incident response report released Tuesday. Of the nearly 500 major cyberattacks Unit 42 responded to last year, 86% involved business disruption, including operational downtime, fraud-related losses, increased operating costs and negative reputational impacts. …

Read more →

Cybercrime, Cybersecurity, Global Security News, Google Threat Intelligence Group, GRU, messaging apps, phishing, Research, Russia, Sandworm, signal, Threats, Uncategorized

Russia-aligned threat groups dupe Ukrainian targets via Signal

Russian state threat groups have compromised Signal accounts used by Ukrainian military and government personnel to eavesdrop on real-time communications, Google Threat Intelligence Group said in a report released Wednesday. “This is a persistent, ongoing campaign being carried out by multiple different Russia-aligned threat actors,” Dan Black, principal analyst at Google Threat Intelligence Group, said…

Read more →

AI, Democracy, Global Security News, Security Bloggers Network, Uncategorized

AI and Civil Service Purges

Donald Trump and Elon Musk’s chaotic approach to reform is upending government operations. Critical functions have been halted, tens of thousands of federal staffers are being encouraged to resign, and congressional mandates are being disregarded. The next phase: The Department of Government Efficiency reportedly wants to use AI to cut costs. According to The Washington…

Read more →

CVE, Cybersecurity, Exploits, Global Security News, Microsoft, Microsoft Threat Intelligence Center, Research, Russia, Seashell Blizzard, Threats, Uncategorized, vulnerabilities

Russian state threat group shifts focus to US, UK targets

A subgroup of Seashell Blizzard has shifted its focus to targets in the U.S., Canada, Australia and the U.K. within the past year, expanding the scope of its malicious activity, Microsoft’s threat intelligence team said in a report released Wednesday. The initial-access operation, which Microsoft tracks as the “BadPilot campaign,” has allowed the Russian state…

Read more →

Chainguard, Emerging Tech, Global Security News, open source, secure by design, software security, Uncategorized

Projecting the next decade of software supply chain security

With the rapid pace of innovation accelerating under a new administration, discussions over whether software security will be sidelined in favor of speed are heating up. However, security leaders have long been saying that security protocols shouldn’t slow down development plans — and they don’t when done correctly. This perception must be adopted more widely…

Read more →

AI, Cybersecurity, Global Security News, ReversingLabs, Technology, Threat Intelligence, Threats, Uncategorized

Hugging Face platform continues to be plagued by vulnerable ‘pickles’

Researchers at ReversingLabs have identified at least two machine-learning models on Hugging Face, a popular platform for community AI development, that link to malicious web shells and managed to evade detection through the use of “pickling.” Pickle files are python-based modules that allow a developer to serialize and deserialize code. They’re commonly used by AI…

Read more →

AI, Artificial Intelligence (AI), Cloud Security, Cybersecurity, deepseek, Global Security News, SQL query, Threats, Uncategorized, wiz

Wiz researchers find sensitive DeepSeek data exposed to internet

A security issue at Chinese artificial intelligence firm DeepSeek exposed over a million lines of sensitive internal data, including user chat histories, API secrets, and backend operational details, according to research published Wednesday by cloud security firm Wiz.  The exposure, discovered earlier this month, stemmed from a publicly accessible ClickHouse database linked to DeepSeek’s systems.…

Read more →

Exploits, Global Security News, Uncategorized

SonicWall pushes urgent patch for its SMA appliance

A critical security flaw has been identified and potentially exploited in SonicWall’s Secure Mobile Access (SMA) 1000 series appliances, sparking significant concern among cybersecurity experts and users worldwide.  The vulnerability, registered as CVE-2025-23006, allows remote, unauthenticated attackers to execute arbitrary operating system commands under certain conditions. The issue specifically impacts the Appliance Management Console (AMC)…

Read more →

Global Security News, Security Bloggers Network, Tools & Techniques, Uncategorized

ETW Threat Intelligence and Hardware Breakpoints

Learn to bypass EDR detection using NtContinue for hardware breakpoints without triggering ETW Threat Intelligence. This technical blog explores kernel debugging, debug registers, and EDR evasion with code examples. The post ETW Threat Intelligence and Hardware Breakpoints appeared first on Praetorian. The post ETW Threat Intelligence and Hardware Breakpoints appeared first on Security Boulevard.

Read more →

Asia Pacific, Global Security News, Uncategorized

CISA director says threat hunters spotted Salt Typhoon on federal networks before telco compromises 

A top federal cybersecurity official said Wednesday that threat hunters from the Cybersecurity and Infrastructure Security Agency first discovered activity from Salt Typhoon on federal networks, allowing public and private sector defenders to more quickly “connect the dots” and respond to Chinese attacks on the U.S. telecommunications industry.   Speaking at an event hosted by the…

Read more →

Exploits, Global Security News, Internet of Things (IoT), routers, threat detection, Uncategorized, vulnerabilities

Thousands of industrial routers vulnerable to command injection flaw 

Thousands of industrial routers from a Chinese telecommunications equipment manufacturer are vulnerable to a post-authentication vulnerability, with indications it is already being exploited in the wild to infect devices with Mirai malware. On Dec. 27, VulnCheck detailed the vulnerability, tracked as CVE-2024-12856, wherein an attacker can leverage default credentials in Four-Faith F3x24 and F3x36 routers…

Read more →

Uncategorized

Geek Guy Podcast:PEPs – New type of Privacy Invasion for Politicians

Politically Exposed Persons (PEPs) Politically Exposed Persons (PEPs). PEPs, defined as individuals holding prominent public positions, along with their close associates and family, are subject to enhanced scrutiny due to their higher risk of involvement in money laundering or terrorism financing. The guidelines outline three PEP categories (domestic, foreign, and international organization) and procedures for…

Read more →

Cybercrime, Cybersecurity, Department of Justice (DOJ), Global Security News, Government, LockBit, Ransomware, Threats, Uncategorized

Justice Department unveils charges against alleged LockBit developer

The U.S. Department of Justice revealed charges Friday against Rostislav Panev, a dual Russian and Israeli national, for his alleged role as a developer in the notorious LockBit ransomware group. Panev was arrested in Israel following a U.S. provisional arrest request and is currently awaiting extradition. Authorities allege that Panev has been an instrumental figure…

Read more →

Exploits, Global Security News, Uncategorized

Clop is back to wreak havoc via vulnerable file-transfer software

In what we can assure you is a new cybersecurity incident despite sounding incredibly similar to incidents of past notoriety: threat actors tied to a notorious ransomware and extortion group have exploited file-transfer software to carry out attacks.  Clop has claimed responsibility for attacks tied to vulnerabilities in software made by Cleo, an Illinois-based IT…

Read more →

Global Security News, Security Bloggers Network, Uncategorized

LW ROUNDTABLE: Lessons learned from the headline-grabbing cybersecurity incidents of 2024

It’s all too clear that the cybersecurity community, once more, is facing elevated challenges as well as opportunities. Part one of a four-part series The world’s reliance on interconnected digital infrastructure continues to deepen, even as the threats facing it … (more…) The post LW ROUNDTABLE: Lessons learned from the headline-grabbing cybersecurity incidents of 2024…

Read more →

Exploits, Global Security News, Security Bloggers Network, supply chain, Uncategorized

Ultralytics Supply-Chain Attack

Last week, we saw a supply-chain attack against the Ultralytics AI library on GitHub. A quick summary: On December 4, a malicious version 8.3.41 of the popular AI library ultralytics ­—which has almost 60 million downloads—was published to the Python Package Index (PyPI) package repository. The package contained downloader code that was downloading the XMRig…

Read more →

Uncategorized

ZLoader Malware Returns With DNS Tunneling to Stealthily Mask C2 Comms

Cybersecurity researchers have discovered a new version of the ZLoader malware that employs a Domain Name System (DNS) tunnel for command-and-control (C2) communications, indicating that the threat actors are continuing to refine the tool after resurfacing a year ago. “Zloader 2.9.4.0 adds notable improvements including a custom DNS tunnel protocol for C2 communications and an…

Read more →

Uncategorized

Microsoft MFA AuthQuake Flaw Enabled Unlimited Brute-Force Attempts Without Alerts

Cybersecurity researchers have flagged a “critical” security vulnerability in Microsoft’s multi-factor authentication (MFA) implementation that allows an attacker to trivially sidestep the protection and gain unauthorized access to a victim’s account. “The bypass was simple: it took around an hour to execute, required no user interaction and did not generate any notification or provide the

Read more →