Bots, Citrix, Mitre, Solarwinds, Naked Nudes, Scarlett, Aaran Leyland, and More News – SWN #339
Bots, Citrix, Mitre, Solarwinds, Naked Nudes, Scarlett, Aaran Leyland, and More News on the Security Weekly News.
Hosts
Doug White
Professor at Roger Williams University
- 1. Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway
- 2. MITRE Releases ATT&CK v14 With Improvements to Detections, ICS, Mobile
- 3. AI gives security pros employment jitters, study says
- 4. SEC charges SolarWinds, CISO with fraud in 2020 supply chain attacks
- 5. NodeStealer Malware Hijacking Facebook Business Accounts for Malicious Ads
- 6. ‘Scarred Manticore’ Unleashes the Most Advanced Iranian Cyber Espionage Yet
- 7. Chatbots are so gullible, they’ll take directions from hackers
- 8. Scarlett Johansson takes legal action over fake AI advert
Aaran Leyland
Cyber security lead EMEA at Defence
- 1. New CVSS 4.0 vulnerability severity rating standard released
The Forum of Incident Response and Security Teams (FIRST) has officially released CVSS v4.0, the next generation of its Common Vulnerability Scoring System standard, eight years after CVSS v3.0, the previous major version.
https://www.scworld.com/news/cvss-4-0-keys-in-on-threat-intelligence-metrics-and-ot-ics-and-iot
https://thehackernews.com/2023/11/first-announces-cvss-40-new.html?m=1
https://cybersecuritynews.com/cvss-v4-0-vulnerability-scoring/?amp