Week in review: 73M customers affected by AT&T data leak, errors led to US govt inboxes compromise
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Cyber attacks on critical infrastructure show advanced tactics and new capabilities In this Help Net Security interview, Marty Edwards, Deputy CTO O.....»»
watchOS 10.5, watchOS 10.6 & watchOS 11: What’s Next for Watch
With a new watchOS 10 update in beta testing and rumors about watchOS 10’s successor swirling, we felt it would be helpful to put together a watchOS release timeline for Apple Watch users. Since watchOS 10’s release back in September, App.....»»
Healthcare’s cyber resilience under siege as attacks multiply
In this Help Net Security interview, Eric Demers, CEO of Madaket Health, discusses prevalent cyber threats targeting healthcare organizations. He highlights challenges in protecting patient data due to infrastructure limitations and the role of emplo.....»»
Strengthening defenses against nation-state and for-profit cyber attacks
There is an urgent need to secure tactical, operational, and strategic critical assets from the edge to the core. In this Help Net Security video, Geoffrey Mattson, CEO of Xage Security, discusses the steps enterprises and critical infrastructure mus.....»»
macOS 14.5, macOS 14.6 & macOS 15: What’s Coming Next for Mac
With new software on the way, we thought it wise to provide Mac users with a macOS update timeline covering everything we should see Apple release in the spring, summer, and early fall. Since macOS Sonoma 14’s release in September, Apple’.....»»
How to hack the Jacksonville Jaguars’ jumbotron (and end up in jail for 220 years)
The story that just keeps getting worse. Enlarge / Three examples of the video screen tampering. (credit: US DOJ) Was someone messing with the Jacksonville Jaguars' giant jumbotron? On September 16, 2018, the Jaguars wer.....»»
Cable lobby vows “years of litigation” to avoid bans on blocking and throttling
FCC sets April 25 vote to restore net neutrality rules repealed under Ajit Pai. Enlarge / FCC Chairwoman Jessica Rosenworcel at a spectrum policy event at the National Press Club on Monday, September 19, 2022. (credit: Getty Imag.....»»
Cyber attacks on critical infrastructure show advanced tactics and new capabilities
In this Help Net Security interview, Marty Edwards, Deputy CTO OT/IoT at Tenable, discusses the impact of geopolitical tensions on cyber attacks targeting critical infrastructure. Edwards highlights the need for collaborative efforts between policyma.....»»
Fastly Bot Management protects websites, apps, and valuable data from malicious automated traffic
Fastly introduced Fastly Bot Management to help organizations combat automated “bot” attacks at the edge and significantly reduce the risk of fraud, DDoS attacks, account takeovers, and other online abuse. Fastly Bot Management represents an impo.....»»
AI improves monsoon rainfall predictions
Every year, the South Asian monsoon season brings heavy rain to over a billion people in the Indian subcontinent between June and September. The rain falls in oscillations: Some weeks see 1 to 4 inches of water, while other weeks are mostly dry. Pred.....»»
What’s next for the iPad mini? Here’s what the rumors say
The current-generation iPad mini was introduced back in September 2021 and hasn’t been updated since. What’s next for the iPad mini? Rumors suggest an update could come later this year with an improved display, faster performance, and more. m.....»»
Here’s how to protect against iPhone password reset attacks
One of the latest attacks on iPhone sees malicious parties abuse the Apple ID password reset system to inundate users with iOS prompts to take over their accounts. Here’s how you can protect against iPhone password reset attacks (often called “MF.....»»
PyPI halted new users and projects while it fended off supply-chain attack
Automation is making attacks on open source code repositories harder to fight. Enlarge / Supply-chain attacks, like the latest PyPI discovery, insert malicious code into seemingly functional software packages used by developers......»»
Preventive drone attacks based on digital traces are a gray area under international law
Identifying terrorists by analyzing their online activities is an approach that is sometimes at odds with international law, especially if the outcome is death. A study has documented this problematic legal and ethical issue......»»
AI weaponization becomes a hot topic on underground forums
The majority of cyberattacks against organizations are perpetrated via social engineering of employees, and criminals are using new methods including AI to supercharge their techniques, according to ReliaQuest. Some 71% of all attacks trick employees.....»»
Cybercriminals use cheap and simple infostealers to exfiltrate data
The rise in identity-based attacks can be attributed to a rapid increase in malware, according to SpyCloud. Researchers found that 61% of data breaches in 2023, involving over 343 million stolen credentials, were infostealer malware-related. Of these.....»»
Apple users targeted by sophisticated phishing attack to reset their ID password
There are many known phishing attacks that target users of Apple devices to gain access to their Apple ID. However, a new “elaborate” attack uses a bug in the Apple ID password reset feature with “push bombing” or “MFA fatigue” techniques.....»»
If you"re getting dozens of password reset notifications, you"re being attacked
Apple users are becoming the target of a new wave of phishing attacks called "MFA Bombing" that relies on user impatience, and a bug in Apple's password reset mechanism.An example of the Apple ID password reset notificationPhishing attacks often rely.....»»
This ‘unpatchable’ Mac flaw is keeping me up at night
A newly discovered vulnerability could leave Apple Silicon Macs wide open to malicious hacker attacks -- and it looks like the flaw can’t even be patched......»»
DOJ antitrust lawsuit complains that iPhones are cool, says lawyer
One element of the DOJ antitrust lawsuit against Apple addresses iMessage, and Apple’s decision to keep the app exclusive to iPhone. But it goes further than arguing that this is anti-competitive, and attacks the use of green chat bubbles for Andro.....»»