DOJ arrested the founders of crypto mixer Samourai for facilitating $2 Billion in illegal transactions The U.S. Department of Justice (DoJ) announced the arrest of two co-founders of a cryptocurrency mixer Samourai. The U.S. Department of Justice (DoJ) has arrested two co-founders of the cryptocurrency mixer Samourai and seized the service. The allegations include claims of facilitating over $2 billion in illicit transactions and laundering more than $100 million in criminal proceeds. The duo, Keonne Rodriguez (35) and William Lonergan Hill (65), are charged with operating Samourai Wallet ..read more

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog U.S. CISA added the Windows Print Spooler flaw CVE-2022-38028 to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the CVE-2022-38028 Microsoft Windows Print Spooler Privilege Escalation vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. Cisa added the flaw to the KEV catalog after Microsoft reported that the Russia-linked APT28 group (aka “Forest Blizzard”, “Fancybear” or “Strontium” used a previous ..read more

You know YouTube, and you probably love YouTube. Beyond a place to share creative videos, it can be a great educational resource. However, it’s not all sunshine and rainbows. Although YouTube has fairly strict policies regarding the type of content users can upload, inappropriate videos intended for older audiences still live on the popular website. And, if students are watching mature content, you may be violating the Children’s Internet Protection Act (CIPA). Don’t be alarmed — we’re here to help. In this guide, we’ll fill you in on YouTube restrictions and how CIPA-compliant content filte ..read more

Follow this real-life network attack simulation, covering 6 steps from Initial Access to Data Exfiltration. See how attackers remain undetected with the simplest tools and why you need multiple choke points in your defense strategy. Surprisingly, most network attacks are not exceptionally sophisticated, technologically advanced, or reliant on zero-day tools that exploit edge-case vulnerabilities. Instead, they often use commonly available tools and exploit multiple vulnerability points. By simulating a real-world network attack, security teams can test their detection systems, ensure they h ..read more

Big Blue IBM provides a variety of servers and management software and is one of the major suppliers in the field of cloud infrastructure. However, IBM itself does not have a prominent performance in the public cloud field and cannot compete with Amazon AWS, Microsoft Azure and Google GCP. However, after all, IBM's business development has been quite good in recent years, so it has relatively sufficient funds on its books. It can expand its business scope through acquisitions and gain a foothold in some fields. IBM spent US$34 billion to acquire Red Hat in 2018 and Apptio in 2023. This week ..read more

Google has once again pushed its plans to deprecate third-party tracking cookies in its Chrome web browser as it works to address outstanding competition concerns from U.K. regulators over its Privacy Sandbox initiative. The tech giant said it’s working closely with the U.K. Competition and Markets Authority (CMA) and hopes to achieve an agreement by the end of the year. As part of the new plan, it aims to start phasing out third-party cookies early next year, making it the third such extension since the tech giant announced the plans in 2020, postponing it from early 2022 to late 2023and a ..read more

Google fixed critical Chrome vulnerability CVE-2024-4058 Google addressed a critical Chrome vulnerability, tracked as CVE-2024-4058, that resides in the ANGLE graphics layer engine. Google addressed four vulnerabilities in the Chrome web browser, including a critical vulnerability tracked as CVE-2024-4058. The vulnerability CVE-2024-4058 is a Type Confusion issue that resides in the ANGLE graphics layer engine. An attacker can exploit this vulnerability to execute arbitrary code on a victim’s machine. This critical flaw was reported by Toan (suto) Pham and Bao (zx) Pham of Qrious Secure on 202 ..read more

Main site Classification loopholes tool Geeks Web security system security cyber security wireless security Device/Client Security Data Security Security management Enterprise security Industrial control safety feature headlines Characters Activity video View recruitment Report Information Blockchain security Standards and Compliance Container security Public class Official public accountEnterprise securitySina Weibo FreeBuf.COM, the network security industry portal, publishes professional security information and technical analysis every day. FreeBuf+ appletPut safety ..read more

This week Microsoft launched the non-security preview update KB5036979 to Windows 10 version 22H2. This type of update mainly contains new features, bug fixes and optimization of existing functions, but does not include any fixes for security vulnerabilities, so it is called a non-security preview update. After testing, such updates will be pushed to all users as Class B stable updates in the following month. Therefore, non-security preview updates are of a testing nature and are usually downloaded and installed only when users actively click to check for updates. However, some users should ..read more

Blue Dot mentioned earlier that Qualcomm launched the Snapdragon X Plus chip last nightand also revealed the specific configuration of the Snapdragon X Elite series flagship chips. At the press conference, Qualcomm prepared some test machines for the media. According to the benchmark results of the test device, the combined multi-core performance of Snapdragon Install additional benchmarking software. Technology website SemiAccurate.com published an article criticizing Qualcomm for this clumsy benchmark test cheating method: a benchmark test result carefully planned by Qualcomm, and it is i ..read more