Ciberseguridad, vulnerabilidades y privacidad
As organizations increasingly deploy Large Language Models (LLMs), the security risks associated with exposed endpoints are becoming more pronounced. This article examines how these vulnerabilities can be exploited and the importance of managing endpoint privileges.
This week’s cybersecurity landscape reveals significant vulnerabilities and incidents affecting various sectors, including a zero-day exploit in Dell RecoverPoint and the emergence of new malware targeting Android devices.
The U.S. Cybersecurity and Infrastructure Security Agency has added two significant vulnerabilities in Roundcube webmail software to its Known Exploited Vulnerabilities catalog, highlighting the urgency for remediation.
Anthropic has launched Claude Code Security, an AI-driven tool designed to identify software vulnerabilities and suggest patches, currently available to select enterprise customers.
A data breach involving Cornwall Council has come to light after personal details of complainants were inadvertently shared with a local councillor.
A financially motivated threat actor has compromised more than 600 FortiGate devices across 55 countries, leveraging AI tools to exploit weak security measures.
A critical vulnerability in BeyondTrust products has been actively exploited, allowing attackers to execute commands and deploy backdoors across various sectors.
Multiple security flaws have been identified in four widely used Visual Studio Code extensions, posing significant risks to users.
A recent report from Dragos highlights the persistent threat posed by Chinese-backed groups like Volt Typhoon, which continue to compromise U.S. energy networks, alongside the emergence of new threat actors targeting critical infrastructure.
A critical security flaw in Dell RecoverPoint for Virtual Machines has been exploited by attackers linked to China since mid-2024, raising concerns about long-term network access.
