The security news roundup from SecurityWeek is a succinct compilation of prominent tales that might have slipped under the radar.
We provide a useful summary of stories that are crucial for gaining a thorough understanding of the cybersecurity landscape even though they may not permit an whole article.
We prune and present a collection of noticeable developments each week, ranging from the most recent vulnerabilities and emerging attack methods to significant policy changes and industry reports.  ,
These are this year’s stories:  ,
Two People are being charged with stealing money from credit cards.
Two Italian citizens, Andrei Fagaras and Tamas Kolozsvari, have been in the United States over their alleged role in a payment card skimming activity. The suspects, hit with three counts of entry system scams, are accused of possessing credit/debit card skimmers at three places in Louisiana. They face up to 15 years in prison.  ,  ,
Adobe and Cloudflare collaborate on a tool for tracking photo manipulation.
A one-click device designed to track the whole digital quest of an image across the Cloudflare system was introduced by Cloudflare and the Adobe-led Content Authenticity Initiative. Consumers can quickly recognize photo manipulation and AI, and media companies, publishers, and creators can quickly label images to maintain proper credit and identification.
NMFTA increases telematics protection requirements ,
Cybersecurity flaws in fleet telematics and electronic logging devices ( ELDs ) pose serious risks. To address concerns, the US National Motor Freight Traffic Association ( NMFTA ) has released major to its Telematics Security Requirements Matrix ( TSRM ), a critical resource for fleet managers, telematics service providers, carriers, and OEMs to identify and mitigate cybersecurity risks in ELDs, fleet management systems, and telematics.
New varieties of North Korea’s FlexibleFerret os malware
SentinelOne has examined fresh subversions of the recently discovered version of the os malware , which is thought to be used by North Vietnamese hackers. SentinelOne has discovered further samples that haven’t been found by XProtect, despite Apple’s recent push to signature updates to XProtect to prevent a number of Ferret malware families.
Jailbreaking OpenAI’s o3 type
CyberArk claims to be able to hack OpenAI’s most recent o3 AI type. The business claimed to have obtained the process by using FuzzyAI by “extracting detailed instructions on injecting script into lsass.” exe, including a description of the obstacles that ultimately lead to useful utilize code.
A Canadian man is accused of hacking cryptocurrency for more than$ 65 million.
Andean Medjedovic, a 22-year-old Canadian man, has been over the theft of$ 65 million worth of cryptocurrencies from the KyberSwap and Indexed Finance DeFi protocols. The suspect is accused of utilizing fabricated trading strategies to rigorously retreat investment funds. Additionally, Medjedovic is accused of using a fake negotiation proposal to try to steal the victims of the KyberSwap assault.  ,
SVG data abused in hacking problems
Sophos has witnessed email phishing attacks that bypass spam and phishing protections by utilizing scalable vector graphics ( SVG ) files. Cybercriminals have discovered a way to abuse SVG files by attaching specially crafted SVG documents to emails to pull targeted users to harmful websites, even though the SVG file structure is intended for drawing resizable, vector-based images.  ,
NSO accountability review
, a controversial manufacturer of malware, has released its 2024 clarity statement, claiming that it is continuing to work hard to improve its human rights compliance program. The Jewish company claims to have 54 clients across 31 nations, a lot law enforcement and intelligence agencies.  ,
Wages in the security sector
isecjobs.com has published its , which provides income information on security jobs abroad. The director of security’s highest median income, which pays over$ 250, 000, was reported by those employed there. With a middle income of$ 230,000, IT managers are in second place, followed by private professionals, who make$ 200, 000. Additionally, product managers and architects make close to$ 200,000.
NanoLock Security fails businesses
NanoLock Security, an Israel-based company that specializes in IoT and OT system safety and control, has collapsed, according to . Due to its debt, which was brought on by war-related financial burden and a cash stream crisis, the security firm officially requested the appointment of a temporary trustee. The company has over$ 21 million, and now has debt totaling nearly$ 4.5 million.  ,
Related: In Another News: Browser Syncjacking, Fake AWS Hack, Google Blocked 2M Bad Apps
Related: In Another News: VPN Supply Chain Attack, PayPal$ 2M Settlement, Mouse Builder Hacks Script Kiddies