Skip to main content

Posts

Showing posts from May, 2021

Amazon devices will soon automatically share your Internet with neighbors

Amazon's experiment wireless mesh networking turns users into guinea pigs. https://bit.ly/3clLUVV

Covert channel in Apple’s M1 is mostly harmless, but it sure is interesting

Technically, it's a vulnerability, but there's not much an attacker can do with it. https://bit.ly/3oXbO7a

SolarWinds hackers are back with a new mass campaign, Microsoft says

Kremlin-backed group uses hacked account to impersonate US aid agency. https://bit.ly/3vwDkuK

Charter charges more money for slower Internet on streets with no competition

Spectrum costs $30 for 400Mbps on one street, $50 for half the speed on another. https://bit.ly/3c1DUZY

No, it doesn’t just crash Safari. Apple has yet to fix exploitable flaw

WebKit bug that was fixed upstream has yet to find its way into Apple products. https://bit.ly/3wBUjfn

Amazon to buy MGM for $8 billion in major boost to Prime Video library

Amazon announces purchase, promises "greater access" to historic studio's films. https://bit.ly/3uqxqtZ

Vulnerability in VMware product has severity rating of 9.8 out of 10

Remote code execution flaw in vCenter Server poses "serious" risk to data centers. https://bit.ly/3bVJTiL

It’s ransomware, or maybe a disk wiper, and it’s striking targets in Israel

Dubbed Apostle, never-before-seen wiper masquerades as ransomware. https://bit.ly/3oMkoWm

Actively exploited macOS 0day let hackers take screenshots of infected Macs

Apple patches vulnerability that malware used to bypass macOS privacy protections. https://bit.ly/3hRs1cS

Hear ye, DarkSide! This honorable ransomware court is now in session

Colonial Pipeline hackers have cashed in spectacularly. Now, they're feeling the heat. https://bit.ly/3yt8NQu

Vulnerabilities in billions of Wi-Fi devices let hackers bypass firewalls

FragAttacks let hackers inject malicious code or commands into encrypted Wi-Fi traffic. https://bit.ly/3v7PbPK

4 vulnerabilities under attack give hackers full control of Android devices

Google updates a 2-week-old security bulletin to say some vulnerabilities were 0-days. https://bit.ly/3f4pH0i

Florida water plant compromise came hours after worker visited malicious site

Researchers find watering-hole attack targeting water utilities. https://bit.ly/2QuIFDL

AT&T to spin off WarnerMedia, basically admitting giant merger was a mistake

WarnerMedia and Discovery to merge, and standalone AT&T will focus on broadband. https://bit.ly/3onAFAO

Colonial Pipeline paid a $5 million ransom—and kept a vicious cycle turning

Stopping payments would go a long way to stopping ransomware. https://bit.ly/3btuCpc

Pipeline attacker Darkside suddenly goes dark—here’s what we know

The closure may mean the group is ceasing or altering ops—or pulling an exit scam. https://bit.ly/3ojlNUj

Ireland’s health care system taken down after ransomware attack

Doctors left unable to access patient records after "very sophisticated" attack. https://bit.ly/3hq2Y04

Biden signs executive order to strengthen US cybersecurity

Move comes after high-profile hacks, including attack on crucial fuel pipeline. https://bit.ly/2R8XXys

Colonial Pipeline resumes operations after ransomware prompted closure

Closure prompted panic buying, price hikes, and other disruptions in East Coast states. https://bit.ly/3ocTfvl

Ransomware crooks post cops’ psych evaluations after talks with DC police stall

Babuk demands $4 million, Metropolitan Police Department offers $100,000. https://bit.ly/33BL42a

Amazon “seized and destroyed” 2 million counterfeit products in 2020

Counterfeit products sent to Amazon warehouses are destroyed to prevent resale. https://bit.ly/3o5wlpQ

Security researcher successfully jailbreaks an Apple AirTag

Successful jailbreak increases existing AirTag security and privacy concerns. https://bit.ly/3f2yoqA

Major ransomware attack cripples gas pipeline on US East Coast

The attack paralyzed a pipeline that moves 2.5 million barrels per day. https://bit.ly/3bgI4fW

Apple brass discussed disclosing 128-million iPhone hack, then decided not to

Emails entered into Epic Games lawsuit show execs contradicting Apple talking points. https://bit.ly/3uy49OD

Ajit Pai promised cheaper Internet—real prices rose 19 percent instead

Home-Internet prices rose four times faster than inflation in Trump era. https://bit.ly/3nXf6a8

US physics lab Fermilab exposes proprietary data for all to see

Exposed systems paved way for researchers to access code, messages, passwords, and more. https://bit.ly/3y3byrE

Dell patches a 12-year-old privilege escalation vulnerability

Dell firmware update driver 2.3 can be exploited to gain kernel-level privilege. https://bit.ly/3ePsDw8

Twitter’s latest robo-nag will flag “harmful” language before you post

Follows Twitter's effort to make you read the news before you share it. https://bit.ly/3uq2Z7M

Data leak makes Peloton’s Horrible, No-Good, Really Bad Day even worse

Faulty API let anyone grab users’ private data, including weight and gender. https://bit.ly/3eknjBV

Netflix IT exec forced employees to use products from vendors that bribed him

Jury finds ex-Netflix VP guilty of awarding tech contracts in exchange for bribes. https://bit.ly/3nKvfQc

New Spectre attack once again sends Intel and AMD scrambling for a fix

A new transient execution variant is the first exploit micro-ops caches. https://bit.ly/3eTXCY7

Frontier exits bankruptcy, claims it will double fiber-to-the-home footprint

Frontier plans 3 million new fiber lines—but 8M others would be stuck on copper. https://bit.ly/33cUKQP

Apple reports 2 iOS 0-days that let hackers compromise fully patched devices

Webkit flaws in just-released iOS 14.5 lets attackers execute malicious code. https://bit.ly/3efp9UF

Verizon agrees to sell Yahoo and AOL to private-equity firm for $5 billion

Apollo to buy Yahoo/AOL for $5B, didn't have much competition from other bidders. https://bit.ly/33cr8mo

An ambitious plan to tackle ransomware faces long odds

Heavyweight task force proposes framework to tackle a major cybersecurity problem. https://bit.ly/3uclfBz

Ford’s ever-smarter robots are speeding up the assembly line

A transmission factory shows how AI may gradually creep into industrial processes https://bit.ly/3te2sEx