CISA starts CVE “vulnrichment” program
The US Cybersecurity and Infrastructure Agency (CISA) has announced the creation of “Vulnrichment,” a new project that aims to fill the CVE enrichment gap created by NIST National Vulnerability Database’s recent slowdown. NVD is fai.....»»
Attackers are exploiting 2 zero-days in Palo Alto Networks firewalls (CVE-2024-0012, CVE-2024-9474)
Palo Alto Networks has released fixes for two vulnerabilities (CVE-2024-0012 and CVE-2024-9474) in its next-generation firewalls that have been exploited by attackers as zero-days. About the vulnerabilities (CVE-2024-0012, CVE-2024-9474) CVE-2024-001.....»»
Pilot study shows school mental health program with entertainment-style videos cuts stigma, boosts impact in Australia
A unique program designed for schools to improve mental health has achieved top marks, having improved awareness and reduced stigma among students, according to a new study......»»
ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps
ScubaGear is an open-source tool the Cybersecurity and Infrastructure Security Agency (CISA) created to automatically evaluate Microsoft 365 (M365) configurations for potential security gaps. ScubaGear analyzes an organization’s M365 tenant configu.....»»
Week in review: Microsoft patches actively exploited 0-days, Amazon and HSBC employee data leaked
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039) November 2024 Patch Tuesday is here, and Microsoft has dropped fixes f.....»»
US flood governance drives social inequity, and maybe the next housing market crash
A recent study published in Communications Earth & Environment looked at the current US National Flood Insurance Program, and how, without drastic changes, another housing crash could be on the horizon......»»
Palo Alto Networks firewalls, Expedition under attack (CVE-2024-9463, CVE-2024-9465)
Attackers have been spotted exploiting two additional vulnerabilities (CVE-2024-9463, CVE-2024-9465) in Palo Alto Networks’ Expedition firewall configuration migration tool, CISA has confirmed on Thursday. About the vulnerabilities (CVE-2024-94.....»»
GOG is tackling PC games preservation with new program
GOG lists a lot of retro PC games on its store, and it's now going a step further to preserve them......»»
How to deactivate your X account before it starts training AI on your posts
In October, X (formerly Twitter) made significant changes to its Terms of Service that ruffled the feathers of the site’s user base. Most notably, anything … The post How to deactivate your X account before it starts training AI on your p.....»»
AirPods Pro lawsuit says Apple didn’t fix the crackles and ANC faults
Back in 2020, Apple admitted that some AirPods Pro units suffered from both crackling sounds, and faults in the Active Noise Cancellation feature. The company launched a recall program which allowed customers to return their AirPods and have them rep.....»»
NIST is chipping away at NVD backlog
The National Institute of Standards and Technology (NIST) is clearing the backlog of unprocessed CVE-numbered vulnerabilities in the National Vulnerability Database (NVD), but has admitted that their initial estimate of when they would finish the job.....»»
Faulty Colorsofts have left some Kindle owners without an e-reader
A trade-in program doesn't work too well when the new product has tech issues. The launch of the first-ever color Kindle isn't going so great. Amazon's Colorsoft began shipping on.....»»
To move or not to move: Is it cheaper to find a new place or stay when your rent increases by 10%?
Your landlord has just raised your rent by 10% and your mind starts running the numbers—should you cop it sweet or look to move?.....»»
3 great BritBox shows you should watch in November 2024
From a moody detective show to a real-life scandal program, these British TV series are among the best shows available on BritBox......»»
FBI confirms China-linked cyber espionage involving breached telecom providers
After months of news reports that Chinese threat actors have breached the networks of US telecommunications and internet service providers, the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have confirmed the success of the atta.....»»
How a Windows zero-day was exploited in the wild for months (CVE-2024-43451)
CVE-2024-43451, a Windows zero-day vulnerability for which Microsoft released a fix on November 2024 Patch Tuesday, has been exploited since at least April 2024, ClearSky researchers have revealed. About the vulnerability CVE-2024-43451 affects all s.....»»
GOG’s Preservation Program is the DRM-free store refocusing on the classics
GOG still puts up new DRM-free titles, but it sees opportunities in oldies. The classic PC games market is "in a sorry state," according to DRM-free and classic-minded storefront.....»»
New single-motor Polestar 3 SUV starts at $67,500, orders open now
The Swedish automaker has added an entry-level version of the Polestar 3. Polestar's range expands a little more today. The Swedish spinoff announced that it is opening its order.....»»
Garmin tipped to add a new Get Fit strength program for beginners
There are rumors that selected Garmin watches will have a new strength training program soon......»»
Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039)
November 2024 Patch Tuesday is here, and Microsoft has dropped fixes for 89 new security issues in its various products, two of which – CVE-2024-43451 and CVE-2024-49039 – are actively exploited by attackers. The exploited vulnerabilities.....»»
Autumn leaves are staying green for longer in Britain. Here"s why
Every year people ask me, "why haven't the leaves fallen yet?" If autumn starts on September 1, then by early November winter should be well on its way. And yet, an amateur photographer who has captured the season's colors for several years in southe.....»»