Citrix ShareFile vulnerability actively exploited (CVE-2023-24489)
CVE-2023-24489, a critical Citrix ShareFile vulnerability that the company has fixed in June 2023, is being exploited by attackers. GreyNoise has flagged on Tuesday a sudden spike in IP addresses from which exploitation attempts are coming, and the C.....»»
New tool provides knowledge on heat stress vulnerability in cities for more targeted adaptation
Heat-related deaths and diseases are a major concern in Europe amid increasing extended periods of extreme heat. A recent study proposes a novel way of quantifying and projecting future vulnerability to heat stress in different areas of a city, provi.....»»
Astronomers race to capture image of exoplanet near star
Planet AF Lep b is a world of firsts. In 2023, it was the lowest-mass planet outside our solar system to be directly observed and have its mass measured using astrometry. This is a technique that charts the subtle movements of a host star over many y.....»»
Satellite data show massive bombs dropped in dangerous proximity to Gaza Strip hospitals in 2023
Satellite data on the proximity of hundreds of M-84 bomb craters to hospitals in the Gaza Strip suggest that, as of November 2023, hospitals were not being given special protection from indiscriminate bombing, as mandated by international humanitaria.....»»
Exploit code for critical GitLab auth bypass flaw released (CVE-2024-45409)
If you run a self-managed GitLab installation with configured SAML-based authentication and you haven’t upgraded it since mid-September, do it now, because security researchers have published an analysis of CVE-2024-45409 and an exploit script.....»»
Universal lands Christopher Nolan’s next movie
After the success of Oppenheimer in 2023, Christopher Nolan has elected to stay with Universal Pictures for his next film. And his first actor may be lined up......»»
Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572)
For October 2024 Patch Tuesday, Microsoft has released fixes for 117 security vulnerabilities, including two under active exploitation: CVE-2024-43573, a spoofing bug affecting the Windows MSHTML Platform, and CVE-2024-43572, a remote code execution.....»»
Ivanti fixes three CSA zero-days exploited in the wild (CVE-2024-9379, CVE-2024-9380, CVE-2024-9381)
Ivanti has patched three additional Cloud Service Appliance (CSA) zero-day flaws, which have been exploited by attackers in conjuction with a zero-day bug the company accidentally fixed in September. The fixed zero-days “We are aware of a limit.....»»
Apple @ Work Podcast: MacStadium delivers Citrix enhancements
Apple @ Work is exclusively brought to you by Mosyle, the only Apple Unified Platform. Mosyle is the only solution that integrates in a single professional-grade platform all the solutions necessary to seamlessly and automatically deploy, manage & p.....»»
INSANE Prime Day deal shaves 45% off the Motorola Razr+ (2023)!
If you’re looking for a cheap foldable phone, then don’t miss this Prime Day deal for the Motorola Razr+ (2023). The post INSANE Prime Day deal shaves 45% off the Motorola Razr+ (2023)! appeared first on Phandroid. Foldable phones, for.....»»
Qualcomm zero-day under targeted exploitation (CVE-2024-43047)
An actively exploited zero-day vulnerability (CVE-2024-43047) affecting dozens of Qualcomm’s chipsets has been patched by the American semiconductor giant. About CVE-2024-43047 On Monday, Qualcomm has confirmed patches for 20 vulnerabilities af.....»»
In stunning Nobel win, AI researchers Hopfield and Hinton take 2024 Physics Prize
Hinton, who quit Google in 2023 to warn of AI dangers, was "flabbergasted" at the news. On Tuesday, the Royal Swedish Academy of Sciences awarded the 2024 Nobel Prize in Physics t.....»»
Report on global water resources: Conditions in 2023 were either too dry or too wet
Not only was 2023 characterized by unprecedentedly high temperatures but also by excessive droughts in many parts of the world as well as floods in other areas. The World Meteorological Organization (WMO) has now presented its third report on the sta.....»»
Georgia Mercedes dealership sues commercial vehicle customizer for nearly $5 million
A Georgia dealership sued a South Carolina company for nearly $5 million for failing to pay for 83 Mercedes-Benz vehicles it bought in 2023, according to a federal court suit......»»
Week in review: Critical Zimbra RCE vulnerability exploited, Patch Tuesday forecast
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: October 2024 Patch Tuesday forecast: Recall can be recalled October arrived, and Microsoft started the month by announcing the release of Windows 11.....»»
If you think your robot vacuum is watching you, you might not be wrong
A new report finds a worrisome Ecovacs vulnerability.....»»
"Red Rooms" review: Austere giallo for our tech-detached age
A Quebecois serial killer courtroom drama that out-Finchers Fincher. Fantasia 2023's Opening Night film reviewed. She's a fashion model! She's a computer genius! She's got dark obsessions that have her fixated upon a serial killer! In the 1960s.....»»
Best practices for implementing threat exposure management, reducing cyber risk exposure
In this Help Net Security interview, Sanaz Yashar, CEO at Zafran, discusses the role of threat exposure management (TEM) in modern cybersecurity strategies. As traditional vulnerability management evolves, TEM addresses the overwhelming risks arising.....»»
100+ domains seized to stymie Russian Star Blizzard hackers
Microsoft and the US Justice Department have seized over 100 domains used by Star Blizzard, a Russian nation-state threat actor. “Between January 2023 and August 2024, Microsoft observed Star Blizzard target over 30 civil society organizations.....»»
How future heat waves at sea could devastate UK marine ecosystems and fisheries
The oceans are warming at an alarming rate. 2023 shattered records across the world's oceans, and was the first time that ocean temperatures exceeded 1°C over pre-industrial levels. This led to the emergence of a series of marine heat wave events ac.....»»
1 Thing We"re Talking About: Vehicle recall number drops slightly compared with 2023
BizzyCar's report shows the number of vehicles under recall in the U.S. through the third quarter of 2024 was down 4 percent from the same time a year earlier......»»