Critical zero-day vulnerability in MOVEit Transfer exploited by attackers!
A critical zero-day vulnerability in Progress Software’s enterprise managed file transfer solution MOVEit Transfer is being exploited by attackers to grab corporate data. “[The vulnerability] could lead to escalated privileges and potenti.....»»
Week in review: Google fixes yet another Chrome zero-day exploit, YouTube as a cybercrime channel
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Google fixes yet another Chrome zero-day exploited in the wild (CVE-2024-5274) For the eighth time this year, Google has released an emergency updat.....»»
There’s new word game hiding on your iPhone that’s way harder than Wordle or Connections
If you’re a Wordle obsessive, you’ll be pleased to know that the latest iOS 17.5 software update included more than a critical bug – which … The post There’s new word game hiding on your iPhone that’s way harder than Wordle or.....»»
3D-MAT, a thermal protection material for the Artemis Generation
The 3-Dimensional Multifunctional Ablative Thermal Protection System (3D-MAT) is a thermal protection material developed as a critical component of Orion, NASA's newest spacecraft built for human deep space missions. It is able to maintain a high lev.....»»
Apple Location Services vulnerability can enable troop movements to be tracked
Security researchers report that a key element of Apple Location Services contains what they call “a really serious privacy vulnerability” that allowed troop movements to be tracked. The issue could also allow an attacker to work out the locat.....»»
Droplets that swim toward dissolution could inspire fluid microbots
Researchers discovered that microscopic liquid droplets swim toward solvent conditions that favor their dissolution. This mechanism may underlie some transport processes within living cells, and could be exploited to develop fluid micro robots......»»
Unveiling a novel AAK1 inhibitor: How chemical proteomics unlock therapeutic potential
Enhancing drug development for life-threatening diseases like cancer hinges on a deep understanding of protein kinases, making it a focal point for researchers. These enzymes, encoded by more than 500 human genes, serve as critical players in cellula.....»»
Researchers: A rush on critical minerals is coming for Australia"s most remote and disadvantaged communities
The Australian mining industry was promised billions of dollars in last week's federal budget to boost critical minerals such as lithium, copper and rare earth metals. This includes tax incentives, an innovation fund and money for Geoscience Australi.....»»
New resource pinpoints inner workings of sorghum plant cells for designing better bioenergy feedstock
Bioenergy sorghum is an important resource for the production of biofuels and bioproducts and a critical component of a sustainable agricultural future. Researchers have been working hard to make this tall, drought-tolerant plant even more productive.....»»
Apache Flink flaw is back, and being actively exploited
An improper access control flaw is being actively exploited, CISA is warning......»»
Google fixes yet another Chrome zero-day exploited in the wild (CVE-2024-5274)
For the eighth time this year, Google has released an emergency update for its Chrome browser that fixes a zero-day vulnerability (CVE-2024-5274) with an in-the-wild exploit. About CVE-2024-5274 As per usual, Google keeps technical details of the vul.....»»
Sonos has heard the music: VoiceOver improvements, local playback, and more return to new app
Sonos launched a brand-new version of its app this month. And it received lots of critical feedback from users over missing features, broken VoiceOver for vision-impaired users, and more. Now the company has acknowledged some of the problems and laun.....»»
HHS pledges $50M for autonomous vulnerability management solution for hospitals
As organizations in the healthcare sector continue to be a prime target for ransomware gangs and CISA warns about a vulnerability (CVE-2023-43208) in a healthcare-specific platform being leveraged by attackers, the Advanced Research Projects Agency f.....»»
GitHub fixes maximum severity Enterprise Server auth bypass bug (CVE-2024-4985)
A critical, 10-out-of-10 vulnerability (CVE-2024-4985) allowing unrestricted access to vulnerable GitHub Enterprise Server (GHES) instances has been fixed by Microsoft-owned GitHub. Fortunately, there is a catch that may narrow down the pool of poten.....»»
Silky shark makes record breaking migration in international waters of the Tropical Eastern Pacific
In a recent study, researchers have documented the most extensive migration ever recorded for a silky shark (Carcharhinus falciformis), revealing critical insights into the behavior of this severely overfished species and emphasizing the urgent need.....»»
Research team uncovers mechanism for spikelet development in barley
The inflorescence architecture of crop plants like barley is predominantly regulated by meristem activity and fate, which play a critical role in determining the number of floral structures for grain production......»»
Chemists use nucleic acid binding dyes as photocatalysts for a popular polymerization method
Researchers in Carnegie Mellon University's Department of Chemistry have developed a nucleic-acid-based photocatalyst that can precisely control atom transfer radical polymerization (ATRP), a popular method used to generate a wide range of materials.....»»
Promethium bound: New study uncovers rare earth element"s properties
Scientists have uncovered the properties of a rare earth element that was first discovered 80 years ago at the very same laboratory, opening a new pathway for the exploration of elements critical in modern technology, from medicine to space travel......»»
Veeam fixes auth bypass flaw in Backup Enterprise Manager (CVE-2024-29849)
Veeam has patched four vulnerabilities in Backup Enterprise Manager (VBEM), one of which (CVE-2024-29849) may allow attackers to bypass authentication and log in to its web interface as any user. With no user interaction required for remote exploitat.....»»
Collapse in migratory fish populations threatens health of millions and critical freshwater ecosystems
Populations of migratory freshwater fish species—including salmon, trout, eel, and sturgeon—continue to decline across the globe. This decline risks the food security and livelihoods of millions of people, the survival of countless other species,.....»»
Critical Fluent Bit flaw affects major cloud platforms, tech companies’ offerings (CVE-2024-4323)
Tenable researchers have discovered a critical vulnerability (CVE-2024-4323) in Fluent Bit, a logging utility used by major cloud providers and tech companies, which may be leveraged for denial of service, information disclosure, or remote code execu.....»»