Skip to main content

Posts

Showing posts from 2023

4-year campaign backdoored iPhones using possibly the most advanced exploit ever

"Triangulation" infected dozens of iPhones belonging to employees of Moscow-based Kaspersky. https://bit.ly/3tBJwpF

AlphV ransomware site is “seized” by the FBI. Then it’s “unseized.” And so on.

In a bizarre twist, both groups issue dueling notices to ransomware website. https://bit.ly/3v4AX73

Xfinity waited 13 days to patch critical Citrix Bleed 0-day. Now it’s paying the price

Data for almost 36 million customers now in the hands of unknown hackers. https://bit.ly/3NBKJ7j

SSH protects the world’s most sensitive networks. It just got a lot weaker

Novel Terrapin attack uses prefix truncation to downgrade the security of SSH channels. https://bit.ly/3GVklBi

A song of hype and fire: The 10 biggest AI stories of 2023

When AI hype hit fever pitch—and a market leader nearly tore itself apart. https://bit.ly/3GPllHs

How Microsoft’s cybercrime unit has evolved to combat increased threats

Microsoft has honed its strategy to disrupt global cybercrime and state-backed actors. https://bit.ly/3TmsVke

UniFi devices broadcasted private video to other users’ accounts

"I was presented with 88 consoles from another account," one user reports. https://bit.ly/3Nxe4Q7

Ukrainian cells and Internet still out, 1 day after suspected Russian cyberattack

Hackers tied to Russian military take responsibility for hack on Ukraine's biggest provider. https://bit.ly/3REgajJ

Tesla unveils its latest humanoid robot, Optimus Gen 2, in demo video

Tesla says its new prototype is 30% faster, 10 kg lighter, and has sensors on all fingers. https://bit.ly/3Tnsp5i

How worried should we be about the “AutoSpill” credential leak in Android password managers?

This newly discovered vulnerability is real, but it's more nuanced than that. https://bit.ly/46VCSbp

Broadcom ends VMware perpetual license sales, testing customers and partners

Already-purchased licenses can still be used but will eventually lose support. https://bit.ly/3RFaOnh

A New Essential Guide to Electronics by Naomi Wu details a different Shenzen

Eating, tipping, LGBTQ+ advice, and Mandarin for "Self-Flashing" and "RGB." https://bit.ly/41gINGV

Everybody’s talking about Mistral, an upstart French challenger to OpenAI

"Mixture of experts" Mixtral 8x7B helps open-weights AI punch above its weight class. https://bit.ly/3RnmScq

The growing abuse of QR codes in malware and payment scams prompts FTC warning

The convenience of QR codes is a double-edged sword. Follow these tips to stay safe. https://bit.ly/4ajMW10

As ChatGPT gets “lazy,” people test “winter break hypothesis” as the cause

Unproven hypothesis seeks to explain ChatGPT's seemingly new reluctance to do hard work. https://bit.ly/3Rh12re

Elon Musk’s new AI bot, Grok, causes stir by citing OpenAI usage policy

Some experts think xAI used OpenAI model outputs to fine-tune Grok. https://bit.ly/3tjWCYn

EU agrees to landmark rules on artificial intelligence

Legislation lays out restrictive regime for emerging technology. https://bit.ly/4aaiPJb

Stealthy Linux rootkit found in the wild after going undetected for 2 years

Krasue infects telecom firms in Thailand using techniques for staying under the radar. https://bit.ly/489ZuWM

Google’s best Gemini AI demo video was fabricated

Google takes heat for a misleading AI demo video that hyped up its GPT-4 competitor. https://bit.ly/46QaJlS

Meta’s new AI image generator was trained on 1.1 billion Instagram and Facebook photos

"Imagine with Meta AI" turns prompts into images, trained using public Facebook data. https://bit.ly/46RzRJ8

Google launches Gemini—a powerful AI model it says can surpass GPT-4

Google claims Gemini beats GPT-4 in "30 of the 32 widely used academic benchmarks." https://bit.ly/3NhhINQ

Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack

UEFIs booting Windows and Linux devices can be hacked by malicious logo images. https://bit.ly/3tbOfOv

New report illuminates why OpenAI board said Altman “was not consistently candid”

Insider report details clash over one board member's criticism in an academic paper. https://bit.ly/482ZuI1

Due to AI, “We are about to enter the era of mass spying,” says Bruce Schneier

Schneier: AI will enable a shift from observing actions to interpreting intentions, en masse. https://bit.ly/41akjiv

IBM, Meta form “AI Alliance” with 50 organizations to promote open source AI

What's the opposite of OpenAI? IBM and Meta devise plan that includes 50 members. https://bit.ly/4171uws

1960s chatbot ELIZA beat OpenAI’s GPT-3.5 in a recent Turing test study

AI chatbot deception paper suggests that some bots (and people) aren't very persuasive. https://bit.ly/47CvVgI

Broadcom cuts at least 2,800 VMware jobs following $69 billion acquisition

Broadcom hasn't said how many people will be affected, or much of anything else. https://bit.ly/3sYA0fV

How Huawei made a cutting-edge chip in China and surprised the US

China's flagship smartphone maker pulled off the feat despite sanctions. https://bit.ly/49Xvsam

2 municipal water facilities report falling to hackers in separate breaches

The facilities, in Pennsylvania and Texas, serve more than 2 million residents. https://bit.ly/47rXZTP

Stable Diffusion Turbo XL can generate AI images as fast as you can type

Even at home, SDXL Turbo can create detailed images with startling speed. https://bit.ly/3uDPTsI

Amazon unleashes Q, an AI assistant for the workplace

Aimed at the office, Amazon Q can summarize docs and assist with programming tasks. https://bit.ly/3SY7plD

Report: Apple and Goldman Sachs are breaking up over money-losing Apple Card

Goldman Sachs has lost billions of dollars on its consumer-focused businesses. https://bit.ly/49ZB43R

ownCloud vulnerability with maximum 10 severity score comes under “mass” exploitation

Easy-to-exploit flaw can give hackers passwords and cryptographic keys to vulnerable servers. https://bit.ly/3GlvxHh

Mother plucker: Steel fingers guided by AI pluck weeds rapidly and autonomously

AI applications like the Ekobot may help the people and the environment. https://bit.ly/3uuf9l2

Hackers spent 2+ years looting secrets of chipmaker NXP before being detected

Chipmaker claims breach had no "material adverse effect." https://bit.ly/412lssu

New “Stable Video Diffusion” AI model can animate any still image

Given GPU and patience, SVD can turn any image into a 2-second video clip. https://bit.ly/3sUbKf0

Amazon’s $195 thin clients are repurposed Fire TV Cubes

Amazon Workspaces Thin Client is a Fire TV Cube with different software. https://bit.ly/3T19InZ

Thousands of routers and cameras vulnerable to new 0-day attacks by hostile botnet

Internet scans show 7,000 devices may be vulnerable. The true number could be higher. https://bit.ly/3MUZ3qV

USB worm unleashed by Russian state hackers spreads worldwide

LitterDrifter's means of self-propagation are simple. So why is it spreading so widely? https://bit.ly/3sK1Pse

95% of OpenAI employees have threatened to quit in standoff with board

OpenAI's future hangs in the balance as staff says they'll join former CEO at Microsoft. https://bit.ly/46uhZno

OpenAI employees revolt after board names new CEO and Altman heads to Microsoft

Ilya Sutskever announces regret; 650 OpenAI employees sign letter asking board to resign. https://bit.ly/3MO5Tyw

OpenAI board attempts to hit “Ctrl-Z” in talks with Altman to return as CEO

Cleared of malfeasance, Altman's unpopular firing may be undone—if he's interested. https://bit.ly/3un3tR5

The FCC says new rules will curb SIM swapping. I’m pessimistic

SIM swaps and port-out scams are a fact of life. New rules aren't likely to change that. https://bit.ly/47itO1q

Details emerge of surprise board coup that ousted CEO Sam Altman at OpenAI

Microsoft CEO Nadella "furious"; OpenAI President and three senior researchers resign. https://bit.ly/49FaJrM

OpenAI President Greg Brockman quits as nervous employees hold all-hands meeting

Microsoft blindsided by Altman firing; has "utmost confidence" in partner OpenAI. https://bit.ly/46hJH6N

“Hallucinating” AI models help coin Cambridge Dictionary’s word of the year

Cambridge: "When an artificial intelligence hallucinates, it produces false information." https://bit.ly/47k638X

Unauthorized “David Attenborough” AI clone narrates developer’s life, goes viral

"We observe the sophisticated Homo sapiens engaging in the ritual of hydration." https://bit.ly/47DUREe

No Bing, no Edge, no upselling: De-crufted Windows 11 coming to Europe soon

Some changes will arrive for non-EU users, too, but not the easy removals. https://bit.ly/3R1EpYC

The “Windows App” for Mac, iOS, and browsers is a fancy remote desktop, for now

Microsoft wants you in Windows, whether you're on iPad, Android, or Chrome OS. https://bit.ly/3sFdicH

From toy to tool: DALL-E 3 is a wake-up call for visual artists—and the rest of us

AI image synthesis is getting more capable at executing ideas, and it's not slowing down. https://bit.ly/3G352q0