Hatty AI

Google has released patches to fix 47 security flaws found in its Android operating systems, including one that it claims has been actively exploited in the wild. The vulnerability in question, CVE-2024-5314, (CVSS score 7.8) has been described as an instance of privilege escalation within a kernel component called the USB Video Class driver (UVC). […]

Microsoft has released patches that address two critical-rated security vulnerabilities affecting Azure AI Face Service, Microsoft Account and Microsoft Account. These flaws could allow malicious actors to escalate their privileges in certain circumstances. Below are the flaws. CVE-2025-21396 – Microsoft Account Elevation Privilege Vulnerability (CVSS score: 7.5) CVE-2025-21415 (CVSS score: 9.9) – Azure AI Face

A security vulnerability was disclosed in AMD Secure Encrypted virtualization (SEV), which could allow an attacker to load malicious CPU microcode if certain conditions are met. The flaw, identified as CVE-2024-56161, has a CVSS of 7.2 out 10.0, which indicates high severity. “Incorrect signature verification in AMD CPU microcode patch loader could allow an attacker

Taiwan is the latest country to ban its government agencies from using DeepSeek’s Artificial Intelligence platform. The reason given was security risks. Radio Free Asia reports that the Ministry of Digital Affairs of Taiwan has released a statement stating that “government agencies and critical infrastructure shouldn’t use DeepSeek because it risks national information security.” “DeepSeek

Cloud security will continue to evolve in 2025, and beyond. Organizations must adapt to new realities, such as the growing reliance on cloud infrastructure to support AI-driven workflows, and the massive amounts of data that are being migrated to cloud. There are also other developments that may impact your organization and make it necessary to

As part of an alleged job interview, North Korean threat actors behind Contagious Interview have been observed delivering Apple macOS malware strains called FERRET. “Targets will typically be asked to communicate with an Interviewer via a link that displays an error message, and a request for them to install or upgrade some required software such

A recently patched vulnerability in the 7Zip archiver was exploited to deliver the SmokeLoader Malware. The vulnerability, CVE-2025-0411, (CVSS score: 7.), allows remote attackers circumvent mark-of the-web (MotW), and execute arbitrary codes in the context of current user. 7-Zip addressed the issue in November 2024, with version 24.09. “The vulnerability was

As soon as you arrive at work and turn on your system, panic begins to set in. Each file is locked and the system is frozen. You see a ransom note flashing on your screen. “Pay $2,000,000 in Bitcoin within 48-hours or lose everything.” Even after paying for your data, there is no guarantee that

Privileged access management (PAM) is now a cornerstone in modern cybersecurity strategies. It has evolved from a technical requirement to a key pillar for leadership agendas. According to Research Nester, the PAM market is expected to reach $42,96 billion by 2037. Organizations invest heavily in PAM. Why is PAM a growing priority? Gartner

Cybercrime groups collected a total of $813,5 million from ransomware attacks in 2024. This is down from $1.25 billion earned in 2023. Chainalysis, a blockchain intelligence company, said that the total amount of extortion during the first half 2024 was $459.8 millions. Payment activity also dropped after July 2024, by approximately 3.94%. “The number ransomware