Apache Flink flaw is back, and being actively exploited
An improper access control flaw is being actively exploited, CISA is warning......»»
Brother MFC-J4535DW review: a nice printer with a major flaw
The Brother MFC-J4535DW INKvestment Tank is an all-in-one printer with surprising strengths and a unique design, but is there good overall value?.....»»
What can we expect from a folding MacBook? (Aside from a less awkward label)
It was claimed earlier this week that Apple is actively working on a folding MacBook, and that plans for this are further advanced than those for a folding iPhone or iPad. The term ‘folding MacBook’ is a rather awkward one given that the descr.....»»
macOS 14.4 brings 50+ security fixes, iOS 17.4 patch list expands to over 40
We learned with the public launch of iOS 17.4 that Apple included fixes for two exploited vulnerabilities and two other security issues. Now with the arrival of macOS 14.4, there are over 50 security patches and the list of security fixes for iOS 17......»»
Cisco patches Secure Client VPN flaw that could reveal authentication tokens (CVE-2024-20337)
Cisco has fixed two high-severity vulnerabilities affecting its Cisco Secure Client enterprise VPN and endpoint security solution, one of which (CVE-2024-20337) could be exploited by unauthenticated, remote attackers to grab users’ valid SAML a.....»»
Kuo: Apple actively working on 20.3-inch foldable MacBook
We’ve been hearing a lot of rumors about Apple working on multiple foldable devices. While most of them refer to devices similar to Samsung’s Galaxy Z Fold and Z Flip, analyst Ming-Chi Kuo has now reported that Apple has been actively working on.....»»
Apple fixes two actively exploited iOS zero-days (CVE-2024-23225, CVE-2024-23296)
Apple has fixed two iOS zero-day vulnerabilities (CVE-2024-23225, CVE-2024-23296) exploited by attackers in the wild. CVE-2024-23225 and CVE-2024-23296 On Tuesday, Apple released security updates for all three supported branches of iOS and iPadOS. iO.....»»
iOS 17.4 includes 4 important security fixes, 2 were exploited
Regain clarity with CleanMyPhone by MacPaw — the new AI-powered cleaning app that quickly identifies and removes blurred images, screenshots, and other clutter from your device. Download it now with a free trial. iOS 17.4 is here for all use.....»»
Hackers exploited Windows 0-day for 6 months after Microsoft knew of it
Technically, Microsoft doesn't consider such bugs as vulnerabilities. It patched it anyway. Enlarge (credit: Getty Images) Hackers backed by the North Korean government gained a major win when Microsoft left a Windows ze.....»»
The MacBook Air M3 has one change that fixes its biggest flaw
Apple made a surprise announcement, introducing updated M3 MacBook Air 13-inch and 15-inch laptops. The M2 13-inch model is now Apple's entry-level offering......»»
3D printer users say their devices were hacked to warn of a security flaw
A benevolent hacker is warning of a 3D printer vulnerability and asking the company to make the printer open source......»»
Lazarus hackers return and hijack a Windows security flaw
North Korean hackers were seen disabling antivirus programs, possibly paving the way for more dangerous attacks......»»
Satellites are burning up in the upper atmosphere—what impact could this have on the Earth"s climate?
Elon Musk's SpaceX has announced it will dispose of 100 Starlink satellites over the next six months, after it discovered a design flaw that may cause them to fail. Rather than risk posing a threat to other spacecraft, SpaceX will "de-orbit" these sa.....»»
ScreenConnect flaws exploited to deliver all kinds of malware (CVE-2024-1709, CVE-2024-1708)
The recently patched vulnerabilities (CVE-2024-1709, CVE-2024-1708) in ConnectWise ScreenConnect software are being exploited by numerous attackers to deliver a variety of malicious payloads. About ConnectWise ScreenConnect ConnectWise ScreenConnect.....»»
Research into marine plastic pollution reveals bacterial enzymes actively degrading plastic
A new study led by researchers at the University of Stirling has uncovered the crucial roles of bacteria living on plastic debris. The research also identifies rare and understudied bacteria that could assist in plastic biodegradation, offering new i.....»»
Attackers exploiting ConnectWise ScreenConnect flaws, fixes available for all users (CVE-2024-1709, CVE-2024-1708)
The two ScreenConnect vulnerabilities ConnectWise has recently urged customers to patch have finally been assigned CVE numbers: CVE-2024-1709 for the authentication bypass, CVE-2024-1708 for the path traversal flaw. ConnectWise has also released a ne.....»»
VMware pushes admins to uninstall vulnerable, deprecated vSphere plugin (CVE-2024-22245, CVE-2024-22250)
VMware Enhanced Authentication Plug-in (EAP), a plugin for VMware vSphere, has two vulnerabilities (CVE-2024-22245, CVE-2024-22250) that could be exploited by attackers to mount authentication relay and session hijack attacks. The vulnerabilities hav.....»»
Notorious NSO Group exploits flaw to send malicious messages and more
Old court documents were hiding a previously unknown flaw that allowed data exfiltration......»»
Balancing “super app” ambitions with privacy
When Elon Musk’s ambitions to transform X into an “everything app” were divulged last year, he joined several companies known to be exploring or actively working on developing super apps, suggesting there’s clearly a niche to be filled. In fa.....»»
Week in review: AnyDesk phishing campaign targets employees, Microsoft fixes exploited zero-days
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Integrating cybersecurity into vehicle design and manufacturing In this Help Net Security interview, Yaron Edan, CISO at REE Automotive, discusses t.....»»
‘GoldDigger’ trojan targets iOS users to steal facial recognition data and bank accounts
Apple constantly updates its operating systems with security patches, which are often exploited by hackers to attack users in many different ways. This time, however, cybersecurity company Group-IB has reported the existence of a new “GoldDigger”.....»»