Skip to main content

Posts

Showing posts from May, 2022

Broadcom plans a “rapid transition” to subscription revenue for VMware

Subscription software is continually updated—but also continually paid for. https://bit.ly/3lZc8Sk

1.1 quintillion operations per second: US has world’s fastest supercomputer

With speed of 1.1 exaflop/s, DOE system at Oak Ridge lab leads Top 500 list. https://bit.ly/3LYoUes

Code execution 0-day in Windows has been under active exploit for 7 weeks

All supported versions of Windows affected. https://bit.ly/38zmAwI

How to make critical infrastructure safer—there’s a long way to go

At Ars Frontiers, Lesley Carhart spoke about the systems that make our world work. https://bit.ly/3x37DfI

The mystery of China’s sudden warnings about US hackers

China has recently begun saber-rattling about American cyberespionage. https://bit.ly/3a8yM8h

US college VPN credentials for sale on Russian crime forums, FBI says

Trafficked data could lead to subsequent attacks, agency warns. https://bit.ly/3GppJMe

Redefining “privacy” and “personal security” in a changing infosec world

Recapping our Ars Frontiers talk with a half-dozen information security experts. https://bit.ly/3Gsia7n

Omnipotent BMCs from QCT remain vulnerable to critical Pantsdown threat

BMCs offer extraordinary control over cloud computers. So why hasn't Quanta patched? https://bit.ly/3sZ96RS

Broadcom will pay $61 billion to become the latest company to acquire VMware

Broadcom has spent billions buying up software companies in recent years. https://bit.ly/3MQqcti

“Tough to forge” digital driver’s license is… easy to forge

A litany of security flaws allows forgeries that are easy, quick, and cheap. https://bit.ly/3wIWKQm

Why it’s hard to sanction ransomware groups

Russia-linked ransomware gang Conti avoided sanctions that hit Russian businesses. https://bit.ly/3GiHf4D

Researchers find backdoor lurking in WordPress plugin used by schools

If you've used School Management Pro, it's time to check your site, stat. https://bit.ly/3yQFNol

Twitter deal leaves Elon Musk with no easy way out

Strength of $44B agreement comes into focus as Musk appears to have second thoughts. https://bit.ly/3GgKSIx

How we learned to break down barriers to machine learning

Dr. Nashlie Sephus schools us on how to get ML on your IT team's radar. https://bit.ly/3Pw0Hiz

2 vulnerabilities with 9.8 severity ratings are under exploit. A 3rd looms

Security flaws in VMware and F5's BIG-IP are being exploited by malicious hackers. https://bit.ly/380O5iC

New Bluetooth hack can unlock your Tesla—and all kinds of other devices

All it takes to hijack Bluetooth-secured devices is custom code and $100 in hardware. https://bit.ly/39xmhCW

Researchers devise iPhone malware that runs even when device is turned off

Research is largely theoretical but exposes an overlooked security issue. https://bit.ly/3sEHTns

The tech sector teardown is more catharsis than crisis

The rules of the game are changing for venture-backed startups. https://bit.ly/3wf5I7t

How a French satellite operator helps keep Russia’s TV propaganda online

Eutelsat refused to stop Russia from broadcasting state-run programming. https://bit.ly/3sBrFLJ

Some top 100,000 websites collect everything you type—before you hit submit

A number of websites include keyloggers that covertly snag your keyboard inputs. https://bit.ly/3syZvRA

Backdoor in public repository used new form of attack to target big firms

Dependency confusion attacks exploit our trust in public code repositories. https://bit.ly/3FDKl2H

US and its allies say Russia waged cyberattack that took out satellite network

February outage came an hour before Russian began its invasion of Ukraine. https://bit.ly/3MWbZdU

Netflix speeds up plan for ad-supported tier, says it may debut this year

NYT: Netflix memo to employees said it aims to introduce ad tier in Q4 2022. https://bit.ly/3sr2WtA

Hackers are actively exploiting BIG-IP vulnerability with a 9.8 severity rating

Flaw in widely used gear from F5 executes root commands, no password necessary. https://bit.ly/39Pkaui

It’s Ars Frontiers week—and we’ve got something happening every day

Today at 1 pm ET: Making critical infrastructure safer with Leslie Carhart. https://bit.ly/3MVTAxI

Small drones are giving Ukraine an unprecedented edge

Consumer drones are having a huge impact on the country’s defense against Russia. https://bit.ly/385WilL

How Apple, Google, and Microsoft will kill passwords and phishing in one stroke

You've heard for years that easier, more secure logins are imminent. That day is here. https://bit.ly/3vNUgQ7

Nvidia hid how many GPUs it was selling to cryptocurrency miners, says SEC

Nvidia reported the GPUs were being used for gaming, a less volatile market. https://bit.ly/3yjBAcB

Russia hammered by pro-Ukrainian hackers following invasion

"There are tens of terabytes of data that’s just falling out of the sky." https://bit.ly/3FkTMEa

Gear from Netgear, Linksys, and 200 others has unpatched DNS poisoning flaw

Vulnerability in 3rd-party libraries can send devices users to malicious sites. https://bit.ly/3w25mjl

How hackers used smarts and a novel IoT botnet to plunder email for months

Once-unknown group uses a tunnel fetish and a chameleon's ability to blend in. https://bit.ly/3KD8RSK