Tags → #cybersecurity

New Framework Developed to Enhance Cybersecurity for Micro Businesses

Cybersecurity threats are increasingly affecting micro businesses, which make up a significant portion of the economy, prompting the development of a user-friendly threat modeling framework called SEANCE to enhance their preparedness and resilience.
New Technique Combines RF Attacks and Software Trojans for Data Extraction

A new technique combining radio frequency side-channel attacks with software Trojans has been developed, enabling efficient data extraction from devices located up to 25 meters away.
OWASP Updates Top 10 for LLM Applications and Generative AI

On November 19, 2024, the OWASP Foundation announced an update to its OWASP Top 10 for Large Language Model Applications, introducing a new sponsorship program to enhance support for security research and education in generative AI.
Rising Interest in Quantum Machine Learning and Security Risks

Interest in Quantum Machine Learning (QML) is increasing, highlighting significant security risks such as data poisoning attacks that threaten the integrity of QML models.
Study Examines LLMs' Role in Static Malware Analysis

A recent study has shown that large language models can enhance static malware analysis, achieving up to 90.9% accuracy in explaining malware functionality, while also highlighting challenges and considerations for their integration into cybersecurity practices.
Study Introduces LLM-Supported Static Application Security Testing

A recent study has proposed a new method called LLM-supported Static Application Security Testing (LSAST) that combines Large Language Models with traditional Static Application Security Testing tools to enhance vulnerability detection in software development.
Study Reveals Security Vulnerabilities in Ethereum Nodes

A recent study highlights significant security vulnerabilities in peer-to-peer networks, particularly focusing on Ethereum nodes, which experienced a high volume of attacks and identified specific attack vectors.
Vulnerabilities Identified in Windows Driver Clipsp.sys

Cisco Talos has discovered multiple vulnerabilities in the Windows driver clipsp.sys, which is essential for the Client Licensing Platform on Windows 10 and 11, raising significant security concerns.
New Model Enhances Detection of Zero-Day Malware Exploits

The article discusses the introduction of a Siamese Neural Network model designed to enhance the detection of zero-day malware exploits by utilizing relation-aware embeddings and entropy images for improved accuracy and efficiency.
Study Reveals Most Commonly Used Passwords in 2024

A 2024 study by NordPass found that "secret" is the most commonly used password, highlighting ongoing cybersecurity vulnerabilities and prompting major companies to explore alternatives to traditional passwords.