Skip to main content

Posts

Showing posts from January, 2021

Cable ISP warns “excessive” uploaders, says network can’t handle heavy usage

Mediacom says heavy uploaders harm network even if they don't exceed data cap. https://bit.ly/3pwHIqx

30% of “SolarWinds hack” victims didn’t actually use SolarWinds

"This campaign should not be thought of as the SolarWinds campaign," says DHS. https://bit.ly/3prXsv4

AT&T eats a $15.5 billion impairment charge as DirecTV debacle continues

AT&T lost 617,000 Premium TV customers in Q4 and 3 million in the calendar year. https://bit.ly/39p7cAG

SpaceX adds laser links to Starlink satellites to serve Earth’s polar areas

Laser links connect Starlink satellites, reducing need for ground stations. https://bit.ly/2Mp5d6y

North Korea hackers use social media to target security researchers

Google finds use of bogus Twitter, LinkedIn profiles to identify vulnerabilities. https://bit.ly/3ceCOek

AT&T may keep majority ownership of DirecTV as it closes in on final deal

It's unclear whether AT&T will maintain operational control of DirecTV. https://bit.ly/39hub0B

The history of the connected battlespace, part one: command, control, and conquer

Since the end of World War II, the US and allies have tried to network-enable war. https://bit.ly/2M1VlzG

DDoSers are abusing Microsoft RDP to make attacks more powerful

DDoS amplification attacks have abused all kinds of legit services. Now, it's Windows. https://bit.ly/397LqkN

This site posted every face from Parler’s Capitol Hill insurrection videos

Faces of the Riot used ISS to detect, extract, and deduplicate every face. https://bit.ly/3pdFGeO

Home alarm tech backdoored security cameras to spy on customers having sex

Employee for ADT accessed ~200 customer cams on more than 9,600 occasions. https://bit.ly/396Bubo

Chrome and Edge want to help with that password problem of yours

The line between browsers and password managers is blurring. https://bit.ly/39SPrZv

Phishing scam had all the bells and whistles—except for one

A reminder that stuff published on the Internet gets published on the Internet. https://bit.ly/397RJoF

Ars Technicast special edition, part 1: The Internet of Things goes to war

Ars presents a two-part limited edition podcast on the "connected battlespace." https://bit.ly/3ivZnMA

Security firm Malwarebytes was infected by same hackers who hit SolarWinds

Group backed by a nation-state rifles through company's email servers. https://bit.ly/2Kx4uzs

Ars online IT roundtable Thursday: What’s the future of the data center?

Join Sean Gallagher, Dell's Ivan Nekrasov, and me on January 21 at 3:15pm Eastern! https://bit.ly/39N8rsn

Hackers alter stolen regulatory data to sow mistrust in COVID-19 vaccine

Post titled “Astonishing fraud! Evil Pfffizer! Fake vaccines!” found on the dark Web. https://bit.ly/2LP2z9L

How law enforcement gets around your smartphone’s encryption

Openings provided by iOS and Android security are there for those with the right tools. https://bit.ly/3swHTnG

The NSA warns enterprises to beware of third-party DNS resolvers

Yes, plaintext DNS is insane, but encrypting it has its own tradeoffs. https://bit.ly/3st8LoM

Hackers used 4 zero-days to infect Windows and Android devices

Boobytrapped websites are used by attackers to infect people who visited them. https://bit.ly/3nHQJM3

AT&T kills off the failed TV service formerly known as DirecTV Now

AT&T TV Now folded into AT&T TV, which finally gets a no-contract option. https://bit.ly/39yzVlk

Hackers steal Mimecast certificate used to encrypt customers’ M365 traffic

Compromise by “sophisticated threat actor” prompts company to issue new certificate. https://bit.ly/3bwqTIb

Parler’s amateur coding could come back to haunt Capitol Hill rioters

Some 80 terrabytes of posts, many already deleted, preserved for posterity. https://bit.ly/2Xvju3T

Jared Mauch didn’t have good broadband—so he built his own fiber ISP

"I had to start a telephone company to get [high-speed] Internet access." https://bit.ly/35PX9mf

SolarWinds malware has “curious” ties to Russian-speaking hackers

Similarities could prove a link or might be part of a false flag operation. https://bit.ly/3qh2J8Z

New York City proposes regulating algorithms used in hiring

Bill would require firms to disclose when they use software to assess candidates. https://bit.ly/3bqjoTl

Reddit’s largest remaining Trump community banned for “inciting violence”

Friday ban comes with a clear notice: "Do not post violent content." https://bit.ly/3hUmVuj

Hackers can clone Google Titan 2FA keys using a side channel in NXP chips

Yubico and Feitian keys that use the same chip are likely susceptible, too. https://bit.ly/35oCTrr

DoJ says SolarWinds hackers breached its Office 365 system and read email

Department discovered the intrusion 9 days after SolarWinds hack came to light. https://bit.ly/3bjlILE

Bucking Trump, NSA and FBI say Russia was “likely” behind SolarWinds hack

Trump has downplayed the mass compromise and Russia's involvement. Underlings disagree. https://bit.ly/3pXx7oH

Telegram feature exposes your precise address to hackers

Messenger maker has expressed no plans to fix location disclosure flaw. https://bit.ly/2LsPcvB

Comcast data cap blasted by lawmakers as it expands into 12 more states

Data cap harms poor people and isn't needed to manage network, Mass. reps say. https://bit.ly/2LlRtZB

Hackers are exploiting a backdoor built into Zyxel devices. Are you patched?

Recently discovered account with admin rights is hardcoded into multiple device models. https://bit.ly/38YoBPj

Ticketmaster admits it hacked rival company before it went out of business

Ticketmaster used stolen passwords and URL guessing to access confidential data. https://bit.ly/2XnibUF

Google employees kick off union membership drive for 120,000 workers

The new union is open to all types of Google employees, including contractors. https://bit.ly/38f62Y6

You can’t unsee Tedlexa, the Internet of Things/AI bear of your nightmares

From the archives: Teddy Ruxpin + Arduino + Raspberry Pi + Alexa = What could go wrong? https://bit.ly/3ociuNy