Dangerous vulnerability can be exploited to carry out massive DDoS attacks (CVE-2023-44487)
Cloudflare, Google, and Amazon AWS revealed that a zero-day vulnerability in the HTTP/2 protocol has been used to mount massive, high-volume DDoS attacks, which they dubbed HTTP/2 Rapid Reset. Decoding HTTP/2 Rapid Reset (CVE-2023-44487) In late Augu.....»»
As Philippines picks up from Usagi, a fresh storm bears down
Typhoon Usagi blew out of the Philippines early Friday as another dangerous storm drew closer, threatening an area where scores were killed by flash floods and landslides just weeks ago, the weather service said......»»
Elon Musk teases sixth Starship flight test with video of spectacular catch
Ahead of the Starship's sixth test flight, SpaceX boss Elon Musk has shared a spectacular video showing the massive booster being caught on its return to Earth......»»
This massive upgrade to ChatGPT is coming in January — and it’s not GPT-5
OpenAI announced on Wednesday that it plans to release a new AI agent feature that will be able to act on a user's behalf......»»
Climate Is on State Ballots This Election
Several downballot races in the 2024 presidential election will carry implications for climate policy far beyond state lines.....»»
NIST is chipping away at NVD backlog
The National Institute of Standards and Technology (NIST) is clearing the backlog of unprocessed CVE-numbered vulnerabilities in the National Vulnerability Database (NVD), but has admitted that their initial estimate of when they would finish the job.....»»
Which animals carry mpox? Our study identified African forest dwelling rodents as one source
Mpox is a disease caused by the highly infectious monkeypox virus. It's quite easily passed on from one person to another. But it originally came from infected animals......»»
Winter smog adds to pollution woes in India and Pakistan
With cities in India and Pakistan ranking among the world's most polluted, new technologies must be adopted to tackle dangerous levels of winter smog, environmentalists urge......»»
How a Windows zero-day was exploited in the wild for months (CVE-2024-43451)
CVE-2024-43451, a Windows zero-day vulnerability for which Microsoft released a fix on November 2024 Patch Tuesday, has been exploited since at least April 2024, ClearSky researchers have revealed. About the vulnerability CVE-2024-43451 affects all s.....»»
New York drought conditions fan flames, spur water saving
New York has urged its 8.5 million residents to save water as America's biggest city endures an unprecedented period without significant rainfall, creating potentially dangerous drought conditions and fanning the flames of deadly wildfires......»»
Zero-days dominate top frequently exploited vulnerabilities
A joint report by leading cybersecurity agencies from the U.S., UK, Canada, Australia, and New Zealand has identified the most commonly exploited vulnerabilities of 2023. Zero-day vulnerabilities on the rise The advisory highlights that malicious cyb.....»»
Scientists identify flaw in astrophysics models of massive stars and supernovae
An international team of researchers has uncovered evidence that astrophysics models of massive stars and supernovae are inconsistent with observational gamma-ray astronomy......»»
Researchers use high-resolution images to create model that predicts landslide risk in coastal areas
São Sebastião, a municipality on the coast of São Paulo state in Brazil that was partially cut off from the rest of the country in February 2023 after a period of torrential rain, had more than 1,000 landslide points, according to an inventory pro.....»»
Trump says Elon Musk will lead “DOGE,” a new Department of Government Efficiency
Musk's Department of Government Efficiency to target "massive waste and fraud." President-elect Donald Trump today announced that a new Department of Government Efficiency—or "D.....»»
Deals: M4 MacBook Pro hits all-time low at $125 off, GPS+Cell Apple Watch Series 10 $50 off, Alpine Loops, more
Joining all-time lows on the 42mm and 46mm Apple Watch Series 10 starting from $349, today Amazon has decided to carry the deep discounts over to the GPS+Cell models, including both the aluminum and higher-end titanium variants starting at $449 (the.....»»
GoIssue phishing tool targets GitHub developer credentials
Researchers discovered GoIssue, a new phishing tool targeting GitHub users, designed to extract email addresses from public profiles and launch mass email attacks. Marketed on a cybercrime forum, GoIssue allows attackers to send bulk emails while kee.....»»
Aerospace employees targeted with malicious “dream job” offers
It’s not just North Korean hackers who reach out to targets via LinkedIn: since at least September 2023, Iranian threat actor TA455 has been trying to compromise workers in the aerospace industry by impersonating job recruiters on the popular e.....»»
Early Black Friday gaming monitor deals: LG, Odyssey, Alienware, more
Gamers, don't miss the chance to buy a new gaming monitor with a massive discount through this year's Black Friday deals......»»
Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039)
November 2024 Patch Tuesday is here, and Microsoft has dropped fixes for 89 new security issues in its various products, two of which – CVE-2024-43451 and CVE-2024-49039 – are actively exploited by attackers. The exploited vulnerabilities.....»»
More evidence that Europe"s ancient landscapes were open woodlands: Study finds oak, hazel and yew were abundant
In 2023 a research group from Aarhus University in Denmark found that light woodland and open vegetation dominated Europe's temperate forests before Homo sapiens. In a new study, recently published in the Journal of Ecology, they take a closer look a.....»»
Carry-On trailer: Taron Egerton must save an airport from holiday destruction
In the new trailer for Netflix's Carry-On, Taron Egerton plays a TSA agent blackmailed into letting a mysterious package through security......»»