Skip to main content

Posts

Showing posts from October, 2020

Google’s Project Zero discloses Windows 0day that’s been under active exploit

Security flaw lets attackers escape sandboxes designed to contain malicious code. https://bit.ly/2TGLZtg

Solve coding challenges at Runcode.ninja online competition, Nov. 6-9

Write code, solve problems, win gift cards—what’s not to like? https://bit.ly/37Uvh1P

Hackers are on the hunt for Oracle servers vulnerable to potent exploit

Code-execution bug has severity rating of 9.8 out of 10; little skill needed to exploit. https://bit.ly/31QSOwU

Advisories: “Brazen” Russian ransomware hackers target hundreds of US hospitals

The threat comes as virus cases spike and the election nears the final stretch. https://bit.ly/3kKfFBW

In a first, researchers extract secret key used to encrypt Intel CPU code

Hackers can now reverse engineer updates or write their own custom firmware. https://bit.ly/2TvvvEi

Trump’s website defaced with claim that Trump admin created coronavirus

Cryptocurrency scam said Trump involved in creating COVID and rigging election. https://bit.ly/2Tz9BQE

SpaceX Starlink public beta begins: It’s $99 a month plus $500 up front

“Better Than Nothing” beta to have speeds up to 150Mbps, latency as low as 20ms. https://bit.ly/34y1muz

Study shows which messengers leak your data, drain your battery, and more

Link previews provide convenience. They can also compromise privacy or security. https://bit.ly/37KZ5hE

SpaceX Starlink to go South for first time with planned deployment in Texas

Starlink's first Southern deployment focuses on students who lack home Internet. https://bit.ly/3kIOPty

Hackers behind life-threatening attack on chemical maker are sanctioned

It's not unlawful for US persons to transact with lab owned by the Russian government. https://bit.ly/34n6VM4

Bot orders $18,752 of McSundaes every 30 min. to find if machines are working

Know before you go... drive-through milkshake style. https://bit.ly/3onHEt2

AT&T loses another 600,000 TV customers as it seeks buyer for DirecTV

TV-subscriber losses decline in Q3, but AT&T is running out of customers to lose. https://bit.ly/35oj6Yq

Hacker says he correctly guessed Trump’s Twitter password—it was “maga2020!”

Security researcher says he alerted Trump team to weak password and lack of 2FA. https://bit.ly/3dNem2p

Trickbot—the for-hire botnet Microsoft attacked—is scrambling to stay alive

It's still not dead, but thanks to an industrywide effort, it's currently dormant. https://bit.ly/3kkWle7

Adblockers installed 300,000 times are malicious and should be removed now

If you have Chromium versions of Nano Adblocker or Nano Defender, pay attention. https://bit.ly/3dR66yo

Microsoft’s new data center in a box will use SpaceX Starlink broadband

Starlink and SES will bring satellite to modular data centers in remote areas. https://bit.ly/31rFa3c

Six Russians accused of the world’s most destructive hacks indicted

Remember the NotPetya wiper that caused billions in losses or Ukraine power grid attacks? https://bit.ly/3m8ylLX

QAnon/8chan sites back online after being ousted by DDoS-protection vendor

Conspiracy theorists, hate-filled groups have trouble staying online. https://bit.ly/34cgGwv

The Internet is full of business cats: Dealing with the breakdown of the work/home divide

Finding the right balance between collaboration and privacy is suddenly critical. https://bit.ly/34dHAV0

Fancy Bear imposters are on a hacking extortion spree

Nice looking website you've got there. It'd be a shame if someone DDoSed it. https://bit.ly/346tkgA

Hackers are using a severe Windows bug to backdoor unpatched servers

Attackers are spraying the Internet to backdoor unpatched Active Directory systems. https://bit.ly/2IEsK1p

Thousands of infected IoT devices used in for-profit anonymity service

Interplanetary Storm uses P2P networking, mostly in devices running Android. https://bit.ly/3nXI9di

Verizon forced to pull ad that claimed firefighters need Verizon 5G

Ad dispute echoes 2018 controversy over Verizon throttling fire department. https://bit.ly/2H9CQq4

Google and Intel warn of high-severity Bluetooth security bug in Linux

Yes, it's serious, but high severity doesn't necessarily mean high risk. https://bit.ly/3o1YmhI

SpaceX gets FCC approval to bid in $16 billion rural-broadband auction

Nearly 400 ISPs qualify for auction, with SpaceX as the only LEO satellite ISP. https://bit.ly/3iUqH5z

Verizon “nationwide” 5G ready for iPhone 12—don’t expect a big speed boost

Verizon 5G available in 1,800 cities, should be marginally faster than 4G. https://bit.ly/3nNx4LP

AT&T has trouble figuring out where it offers government-funded Internet

AT&T said it is correcting mistakes and will exceed requirements in each state. https://bit.ly/315Bynf

Facebook bans Holocaust denial amid rapid rise in “deceptive” content

The policy is a reversal for Facebook—if it actually sticks or is enforced. https://bit.ly/33SnyPr

Remote tribe says SpaceX Starlink “catapulted” them into 21st century

Starlink's limited beta hooked up a reservation in rural Washington state. https://bit.ly/2Fl4VKy

Undocumented backdoor that covertly takes snapshots found in kids’ smartwatch

The X4, made and jointly developed in China, raises concerns. https://bit.ly/33T10yi

Feds say active exploits of critical Zerologon bug threaten elections orgs

Zerologon gives attackers instant access to all-powerful domain controllers. https://bit.ly/2SHlFyO

Microsoft thumbs its nose at Apple with new “app fairness” policy

The software giant has picked a side, and it's with Epic and Spotify. https://bit.ly/2FlXMKc

AT&T plans thousands of layoffs at HBO, Warner Bros., rest of WarnerMedia

AT&T’s WarnerMedia cuts jobs, blames pandemic’s impact on entertainment industry. https://bit.ly/3nwNzvz

Comcast says gigabit downloads and uploads are now possible over cable

Comcast begins trial of symmetrical 1.25Gbps—no word on commercial availability. https://bit.ly/3jI4h97

IBM to split into two companies by end of 2021

As-yet unnamed “NewCo” will handle IBM’s “managed infrastructure services.” https://bit.ly/3iIw87B

Now you can enforce your privacy rights with a single browser tick

From the ashes of Do Not Track rises a new Global Privacy Control. https://bit.ly/3lmI8xt

SpaceX has launched enough satellites for Starlink’s upcoming public beta

"Fairly wide public beta" to come after latest satellites reach target position. https://bit.ly/3lo5vqu

AT&T offloading DirecTV could be a “fire sale” as company weighs low bids

AT&T moves ahead on DirecTV sale despite low offers, seeks second round of bids. https://bit.ly/2I9EHvT

DHS warns that Emotet malware is one of the most prevalent threats today

US detects more than 16,000 alerts since July for nasty trojan that's hard to spot. https://bit.ly/34tZUYI

Buying Verizon 5G Home is even harder than finding a Verizon mobile 5G signal

5G Home is barely available even in the few areas that have Verizon mobile 5G. https://bit.ly/3no0SOV

Boom! Hacked page on mobile phone website is stealing customers’ card data

If you're in the market for a new phone plan, use a different site. https://bit.ly/3iG6Xmo

AT&T kills DSL, leaves tens of millions of homes without fiber Internet

AT&T stops connecting new DSL users; only 28% of AT&T territory has full fiber. https://bit.ly/3lh5qER

Custom-made UEFI bootkit found lurking in the wild

Attackers are going to great lengths to gain the highest level of persistence. https://bit.ly/2SvHv8e

Russia’s Fancy Bear hackers likely penetrated a federal agency

New clues indicate that APT28 may be behind mysterious intrusion disclosed last week. https://bit.ly/2SnvoKu

Nearly 20,000 workers have had COVID-19, Amazon admits

It's the first tally from Amazon, which had been keeping quiet about its numbers. https://bit.ly/3nc16IR

Paying ransomware demands could land you in hot water with the feds

Advisory applies not just to victims but also to security and finance firms they hire. https://bit.ly/33jaHFK