Apache HugeGraph-Server flaw actively exploited, CISA warns
The vulnerability has been patched months ago, but now federal agencies have a deadline to patch......»»
Scientists identify flaw in astrophysics models of massive stars and supernovae
An international team of researchers has uncovered evidence that astrophysics models of massive stars and supernovae are inconsistent with observational gamma-ray astronomy......»»
Ocean warming and acidification threaten key ocean plankton groups, study warns
According to a recent study published in Nature, many planktonic foraminifera species may face unprecedented environmental conditions by the end of this century, potentially surpassing their survival thresholds. Planktonic foraminifera are single-cel.....»»
Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039)
November 2024 Patch Tuesday is here, and Microsoft has dropped fixes for 89 new security issues in its various products, two of which – CVE-2024-43451 and CVE-2024-49039 – are actively exploited by attackers. The exploited vulnerabilities.....»»
Astronomers investigate long-term variability of blazar AO 0235+164
Astronomers have performed a comprehensive multiwavelength study of an extremely variable blazar known as AO 0235+164. Results of the new study, published Nov. 3 on the preprint server arXiv, shed more light on the long-term variability and behavior.....»»
November 2024 Patch Tuesday forecast: New servers arrive early
Microsoft followed their October precedent set with Windows 11 24H2 and announced Microsoft Server 2025 on the first of November. We were expecting the official announcement at Microsoft Ignite near the end of the month, but with the early release, e.....»»
New tools give researchers hope for fungus-ravaged US bats
Standing at a woodland entrance to the world's longest cave system in Kentucky, a park ranger warns those about to enter of an extremely deadly fungus—not for humans, but for the bat populations it has devastated across North America......»»
Critical Palo Alto Networks Expedition bug exploited (CVE-2024-5910)
A vulnerability (CVE-2024-5910) in Palo Alto Networks Expedition, a firewall configuration migration tool, is being exploited by attackers in the wild, the Cybersecurity and Infrastructure Security Agency (CISA) confirmed on Thursday. About CVE-2024-.....»»
Notepad.exe, now an actively maintained app, has gotten its inevitable AI update
Other Windows Insider updates include new CPU instructions for Prism x86 emulator. Among the decades-old Windows apps to get renewed attention from Microsoft during the Windows 11.....»»
Coral reef fish running out of time to recover at Great Barrier Reef islands, research warns
A study has found concerning new evidence of long-term declines in coral reef fish around highly visited inshore islands of the Great Barrier Reef......»»
Battling air pollution may contribute to climate change by impacting soil carbon storage
Decades-old policies aimed at improving air quality may also be accelerating global climate change, warns a recent study published in the journal Ecology......»»
Critical vulnerability in Cisco industrial wireless access points fixed (CVE-2024-20418)
Cisco has fixed a critical command injection vulnerability (CVE-2024-20418) affecting its Ultra-Reliable Wireless Backhaul (URWB) Access Points that can be exploited via a HTTP requests and allows complete compromise of the devices. There are no work.....»»
Suspect arrested in Snowflake data-theft attacks affecting millions
Threat actor exploited account credentials swept up by infostealers years earlier. Canadian authorities have arrested a man on suspicion he breached hundreds of accounts belonging.....»»
Google patches actively exploited Android vulnerability (CVE-2024-43093)
Google has delivered fixes for two vulnerabilities endangering Android users that “may be under limited, targeted exploitation”: CVE-2024-43047, a flaw affecting Qualcomm chipsets, and CVE-2024-43093, a vulnerability in the Google Play fr.....»»
Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)
Synology has released fixes for an unauthenticated “zero-click” remote code execution flaw (CVE-2024-10443, aka RISK:STATION) affecting its popular DiskStation and BeeStation network attached storage (NAS) devices. About CVE-2024-10443 CV.....»»
US Space Force warns of “mind-boggling” build-up of Chinese capabilities
Russia and China "have developed and demonstrated the ability to conduct war fighting in space." The chief of the US Space Force has warned that China is putting military capabili.....»»
Apple researchers ran an AI test that exposed a fundamental ‘intelligence’ flaw
Apple just shipped its first Apple Intelligence features and launched new AI-optimized Macs. But for all the AI hype, there are clearly limitations with the technology’s intelligence. And one of those limits was highlighted by Apple’s AI research.....»»
What monkeys might teach us about evaluating presidential candidates
Does a candidate's appearance affect how we vote? There's growing evidence that suggests the answer may be yes. In a recent study published on the preprint server bioRxiv, neuroscientists at the University of Pennsylvania and the Champalimaud Center.....»»
Climate Goal “Will Be Dead Within a Few Years” Unless World Acts, U.N. Warns
The world is well on track to blow past a goal of limiting global warming to 1.5 degrees Celsius that many countries have put at the center of their climate efforts.....»»
A smaller Mac mini brings big problems for server farms and accessory makers
The greatly reduced size of the new M4 Mac mini is fantastic, but will be trouble for colocation services, rack mounters, and folks with hubs that will no longer fit neatly under the computer.The smaller size of the M4 Mac mini (right) means certain.....»»
"Sexual precarity": How insecure work puts migrants at risk of being sexually harassed, assaulted or trafficked
Some of the ways migrants are exploited in the workforce get a lot of public attention. We hear tragic stories about wage theft, forced unpaid overtime, unsafe work conditions or discrimination. And we are likely to hear more such grim stories reveal.....»»