Skip to main content

Posts

Showing posts from December, 2020

Activist hedge fund advises Intel to outsource CPU manufacturing

Third Point fund, led by Daniel Loeb, demands strategy shake up https://bit.ly/3n3QdY4

Corellium notches partial victory in Apple iOS copyright case

Security firm's actions both may and may not qualify under fair use, judge held. https://bit.ly/34TfWw7

CD Projekt Red investors sue company over Cyberpunk 2077 debacle

Players aren't the only ones angry about how the game's console versions launched. https://bit.ly/3aOklVd

2020 had its share of merorable hacks and breaches. Here are the top 10

The past 12 months teaches us that, yes, attacks do only get better. https://bit.ly/3mYt0GJ

Zero-click iMessage zero-day used to hack the iPhones of 36 journalists

Malicious messages installed spyware that recorded audio and pics and stole passwords. https://bit.ly/3nFAwaF

AT&T reportedly struggling to sell DirecTV at anything but a huge loss

AT&T told bidders it may cancel auction if offers don't improve, NY Post reports. https://bit.ly/3mLgsmk

How an obscure British PC maker invented ARM and changed the world

1987's Acorn Archimedes was the first production RISC-based personal computer. https://bit.ly/3atJyUD

Russia’s hacking frenzy is a reckoning

US still has no good answer for "supply chain" attacks that let Russia run wild. https://bit.ly/34xr8OS

Kazakhstan spies on citizens’ HTTPS traffic; browser makers fight back

Kazakhstan gov required citizens to install self-signed root certificate https://bit.ly/3haybCs

Microsoft president calls SolarWinds hack an “act of recklessness“

Of 18,000 backdoored servers, hackers followed up on only a few dozen. https://bit.ly/2KxXy4O

SolarWinds hack that breached gov networks poses a “grave risk” to the nation

Nuclear weapons agency among those breached by state-sponsored hackers. https://bit.ly/3nvsTUo

Amazon’s answer to SpaceX Starlink delivers 400Mbps in prototype phase

Amazon offers peek into development of antenna for Project Kuiper user terminal. https://bit.ly/2KfaCvZ

“Evil mobile emulator farms” used to steal millions from US and EU banks

Scale of operation is unlike anything researchers had seen before. https://bit.ly/3r5VEJp

Up to 3 million devices infected by malware-laced Chrome and Edge add-ons

Security firm identifies 28 malicious extensions hosted by Google and Microsoft. https://bit.ly/2WoV9vQ

SolarWinds hackers have a clever way to bypass multi factor authentication

Hackers who hit SolarWinds compromised a think tank three separate times. https://bit.ly/3oTUcbi

~18,000 organizations downloaded backdoor planted by Cozy Bear hackers

Russia-backed hackers use supply chain attack to infect public and private organizations. https://bit.ly/3818C2x

Russian hackers hit US government using widespread supply chain attack

Russia's Cozy Bear is trojanizing business software to infect organizations worldwide. https://bit.ly/383824a

Zodiac Killer cipher is cracked after eluding sleuths for 51 years

Northern California serial murderer sent encoded messages that went uncracked until now. https://bit.ly/3gSs2e5

Facebook says hackers backed by Vietnam’s government are linked to IT firm

Group is known for its robust, custom-made malware. IT firm says the link is a mistake. https://bit.ly/344DPAN

Working from home at 25MHz: You could do worse than a Quadra 700 (even in 2020)

Famously, Apple's Quadra 700 once helped track dinosaurs. Is it stuck in amber nowadays? https://bit.ly/3n59RE2

4 major browsers are getting hit in widespread malware attacks

Chrome, Firefox, Edge, and Yandex are all affected in widespread ad-injection campaign. https://bit.ly/39UGYqu

Brave browser-maker launches privacy-friendly news reader

By design, Brave Today doesn't let the company or third parties build user profiles. https://bit.ly/372FcSj

COVID-19 vaccine data has been unlawfully accessed in hack of EU regulator

Hack of the European Medicines Agency affects vaccine from Pfizer and BioNTech. https://bit.ly/3oQl8J5

Pornhub blocks uploads and downloads in crackdown on child-sexual-abuse videos

Pornhub will only allow uploads by verified users, bans downloads of most videos. https://bit.ly/3mY1TfU

Security powerhouse FireEye says it was breached by nation-state hackers

The stunning revelation means an already advanced group has a new set of attack tools. https://bit.ly/3mZuVvI

Cloudflare, Apple, and others back a new way to make the Internet more private

New DNS technique separates address lookups from the people making them. https://bit.ly/3m6KJvz

GE puts default password in radiology devices, leaving healthcare networks exposed

Fixing the critical vulnerability isn’t straightforward and comes with its own risks. https://bit.ly/3gqGc5D

NSA says Russian state hackers are using a VMware flaw to ransack networks

Multiple VMware products are exploited in attacks that access Windows active directory. https://bit.ly/36T48vy

SpaceX gets $886 million from FCC to subsidize Starlink in 35 states

Charter also wins big; FCC fund will bring service to 5.2M homes and businesses. https://bit.ly/3goA1z8

Rusty but intact: Nazi Enigma cipher machine found in Baltic Sea

Enigma device stymied Allied intelligence until Alan Turing cracked it. https://bit.ly/3lPbRPy

Google parts with top AI researcher after blocking paper, faces blowback

Timnit Gebru’s exit reignites debate over diversity and free speech at tech group. https://bit.ly/3op0Y8K

Verizon has been leaking customers’ personal information for days (at least)

A bug in a customer chat feature shows transcripts of other people's chats. https://bit.ly/3omHr8U

Nation-state backed hackers going after COVID vaccine supply chain

Sophisticated operation is well-researched and well-placed, aimed at EU. https://bit.ly/2JNyWEY

One of the Internet’s most aggressive threats could take UEFI malware mainstream

New feature targets the most critical component of all modern-day computers. https://bit.ly/37BGDGy

iPhone zero-click Wi-Fi exploit is one of the most breathtaking hacks ever

Before Apple patch, Wi-Fi packets could steal photos. No interaction needed. Over the air. https://bit.ly/3qgjPo6

Oracle vulnerability that executes malicious code is under active attack

Recently patched WebLogic security bug requires little skill and no authentication. https://bit.ly/2VrdHLD

Amazon to roll out tools to monitor factory workers and machines

Sensor, computer vision hardware come as tech giant pushes into industrial sector. https://bit.ly/2HXny8I