384,000 sites pull code from sketchy code library recently bought by Chinese firm
Many website admins, it seems, have yet to get memo to remove Polyfill[.]io links. Enlarge (credit: Getty Images) More than 384,000 websites are linking to a site that was caught last week performing a supply-chain attac.....»»
Backdoor slips into popular code library, drains ~$155k from digital wallets
Solana-web3.js code library drains private keys, giving access to user wallets. Hackers pocketed as much as $155,000 by sneaking a backdoor into a code library used by developers.....»»
Dog domestication happened many times, but most didn’t pan out
Our relationship with wolves, dogs, and even coyotes has always been complicated. Between 8,000 and 12,000 years ago, people in Alaska kept reinventing dogs with mixed results. Th.....»»
Solana’s popular web3.js library backdoored in supply chain compromise
A software supply chain attack has lead to the publication of malicious versions of Solana’s web3.js library on the npm registry. Just like the recent Lottie Player supply chain compromise, this attack was reportedly made possible due to compro.....»»
Stellantis denies hiring Apple"s Luca Maestri to solve its massive problems
Netherlands car firm Stellantis may be best known for buying Jeep, Dodge, Ram, and Chrysler, but it says it is definitely not buying ex-Apple CFO Luca Maestri.Luca Maestri — image credit: AppleStellantis cars waited until its shares rose before den.....»»
US recommends encrypted messaging as Chinese hackers linger in telecom networks
US official: "Impossible for us to predict when we'll have full eviction." A US government security official urged Americans to use encrypted messaging as major telecom companies.....»»
Archaeological remains in Alaska show humans and dogs bonded 12,000 years ago
"Dog is man's best friend" may be an ancient cliché, but when that friendship began is a longstanding question among scientists. A study led by a University of Arizona researcher is one step closer to an answer to how Indigenous people in the Americ.....»»
Scan your iPhone for Pegasus spyware using a $1 app
A newly-released app lets you regularly scan your iPhone for Pegasus spyware – which can access almost all the data on a phone – for a one-off cost of just one dollar. A mobile security firm created the app, which allows you to scan your iPho.....»»
PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785)
Researchers have published a proof-of-concept (PoC) exploit for CVE-2024-8785, a critical remote code execution vulnerability affecting Progress WhatsUp Gold, a popular network monitoring solution for enterprises. CVE-2024-8785 and the PoC exploit CV.....»»
Apple is struggling to make Apple Intelligence comply with China"s demands
The deal between Apple and local firm Baidu to bring a form of Apple Intelligence to China is reportedly faltering because of technical and philosophical privacy issues.Apple Intelligence faces delays in ChinaApple Intelligence could provide the boos.....»»
Neanderthals were making hand stencil rock art more than 66,000 years ago, U-series dating suggests
A discovery deep within a cave in Spain has challenged the history of human artistic expression. Researchers have determined that hand stencils in Maltravieso Cave are more than 66,000 years old, suggesting that Neanderthals, not modern humans, were.....»»
Death toll rises to 29 in southern Thailand floods
More than 30,000 people have been forced to flee their homes due to severe flooding in southern Thailand, where the death toll climbed to 29, officials said Wednesday......»»
70% of open-source components are poorly or no longer maintained
The geographic distribution of open-source contributions introduces geopolitical risks that organizations must urgently consider, especially with rising nation-state attacks, according to Lineaje. Open-source code risks rise with anonymous contributi.....»»
For $630, you may want to take the plunge on an OLED gaming monitor
Everyone wants an OLED gaming monitor, and now that you can buy one for $630, it's may be time to pull the trigger......»»
The TCL QM8 will light up your living room and is on sale for Cyber Week
The 2024 TCL QM8 is an excellent midrange mini-LED TV with over 4,000 nits of brightness paired with impressive black levels, and all sizes are on sale during Cyber Week......»»
The ever popular Lenovo ThinkPad is under $1,000 right now
The Lenovo ThinkPad E16 is a good option for anyone who wants a large screen to work with on the move. It's on sale now at Lenovo......»»
Simply Piano now lets you learn to play through Apple Vision Pro — no keyboard required
Simply Piano has long been a hit app in my household. My daughter never really showed interest in learning to play our keyboard until she came across Simply Piano on her iPad. I think it’s the first annual subscription I ever bought for her based o.....»»
Veeam plugs serious holes in Service Provider Console (CVE-2024-42448, CVE-2024-42449)
Veeam has fixed two vulnerabilities in Veeam Service Provider Console (VSPC), one of which (CVE-2024-42448) may allow remote attackers to achieve code exection on the VSPC server machine. The vulnerabilities Veeam Service Provider Console is a cloud-.....»»
Are US "news deserts" hothouses of corruption? Researchers demonstrate impacts of losing local papers
The March 24, 2021 edition of neighborhood newspaper Northeast News, out of Kansas City, Missouri, contained a surprise for its 9,000 subscribers. Where the front-page news should have been, there was a big, blank white space. This was no printer's e.....»»
Save up to $250 on every M4 Mac mini, plus get M2 deals from $449
Apple's new Mac mini is eligible for promo code savings, with every M4 and M4 Pro spec up to $250 off. Plus, grab closeout deals on M2 models, with prices starting at $449.Coupon savings are in effect on every M4 Mac mini.The December deals on Apple'.....»»
Observations detect a new long-period radio transient associated with supernova remnant G22.7-0.2
Using the DAocheng Radio Telescope (DART), Chinese astronomers have detected a long-period transient event. The newfound transient, which received designation DART J1832-0911, has a period of approximately 44 minutes and is associated with a supernov.....»»