Easily exploitable flaw in Oracle Opera could spell trouble for hotel chains (CVE-2023-21932)
A recently patched vulnerability (CVE-2023-21932) in Oracle Opera, a property management system widely used in large hotel and resort chains, is more critical than Oracle says it is and could be easily exploited by unauthenticated remote attackers to.....»»
Parents Labeling a Kid’s Friend a Bad Influence Can Backfire
Is your kid in trouble? Blaming their friends is ill advised.....»»
NIST is chipping away at NVD backlog
The National Institute of Standards and Technology (NIST) is clearing the backlog of unprocessed CVE-numbered vulnerabilities in the National Vulnerability Database (NVD), but has admitted that their initial estimate of when they would finish the job.....»»
Which animals carry mpox? Our study identified African forest dwelling rodents as one source
Mpox is a disease caused by the highly infectious monkeypox virus. It's quite easily passed on from one person to another. But it originally came from infected animals......»»
How a Windows zero-day was exploited in the wild for months (CVE-2024-43451)
CVE-2024-43451, a Windows zero-day vulnerability for which Microsoft released a fix on November 2024 Patch Tuesday, has been exploited since at least April 2024, ClearSky researchers have revealed. About the vulnerability CVE-2024-43451 affects all s.....»»
Zero-days dominate top frequently exploited vulnerabilities
A joint report by leading cybersecurity agencies from the U.S., UK, Canada, Australia, and New Zealand has identified the most commonly exploited vulnerabilities of 2023. Zero-day vulnerabilities on the rise The advisory highlights that malicious cyb.....»»
Scientists identify flaw in astrophysics models of massive stars and supernovae
An international team of researchers has uncovered evidence that astrophysics models of massive stars and supernovae are inconsistent with observational gamma-ray astronomy......»»
Researchers use high-resolution images to create model that predicts landslide risk in coastal areas
São Sebastião, a municipality on the coast of São Paulo state in Brazil that was partially cut off from the rest of the country in February 2023 after a period of torrential rain, had more than 1,000 landslide points, according to an inventory pro.....»»
Aerospace employees targeted with malicious “dream job” offers
It’s not just North Korean hackers who reach out to targets via LinkedIn: since at least September 2023, Iranian threat actor TA455 has been trying to compromise workers in the aerospace industry by impersonating job recruiters on the popular e.....»»
Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039)
November 2024 Patch Tuesday is here, and Microsoft has dropped fixes for 89 new security issues in its various products, two of which – CVE-2024-43451 and CVE-2024-49039 – are actively exploited by attackers. The exploited vulnerabilities.....»»
More evidence that Europe"s ancient landscapes were open woodlands: Study finds oak, hazel and yew were abundant
In 2023 a research group from Aarhus University in Denmark found that light woodland and open vegetation dominated Europe's temperate forests before Homo sapiens. In a new study, recently published in the Journal of Ecology, they take a closer look a.....»»
What can we expect at the COP29 Climate Conference?
With a climate-denialist re-elected as US president and another petrostate host (following Dubai in 2023)—hopes for ambitious outcomes at the 29th UN Climate Change "Conference of the Parties" (COP29) in Baku, Azerbaijan are not high......»»
Ultimate guide on how to use an external SSD as a working drive on macOS Sequoia
It is easily possible to double the cost of a new M4 Mac mini by buying Apple storage — but if you know what you're doing, you can buy external drives, and save hundreds of dollars by working off those. Here's how.External drives are vastly cheaper.....»»
Ars Live: Our first encounter with manipulative AI
On Nov. 19, join Benj Edwards and Simon Willison's live YouTube chat about the "Great Bing Chat Fiasco of 2023." In the short-term, the most dangerous thing about AI language mode.....»»
Massive troves of Amazon, HSBC employee data leaked
A threat actor who goes by the online moniker “Nam3L3ss” has leaked employee data belonging to a number of corporations – including Amazon, 3M, HSBC and HP – ostensibly compromised during the May 2023 MOVEit hack by the Cl0p r.....»»
Is AI already plateauing? New reporting suggests GPT-5 may be in trouble
OpenAI's highly-anticipated Project Orion may or may not arrive this year, but so far, the company's beta testers have been unimpressed with the new model's performance......»»
Private jet carbon emissions soar 46%: Study
The carbon footprint from private jet travel grew 46 percent between 2019 and 2023 and will keep rising unless the ultra-luxury industry is regulated, according to new research published Thursday......»»
Spotify users can now easily share songs on TikTok
TikTok already lets users add a song to their Spotify library without leaving the app, and both platforms are now introducing another quite convenient feature: the ability to easily share Spotify songs on TikTok. more….....»»
Critical Palo Alto Networks Expedition bug exploited (CVE-2024-5910)
A vulnerability (CVE-2024-5910) in Palo Alto Networks Expedition, a firewall configuration migration tool, is being exploited by attackers in the wild, the Cybersecurity and Infrastructure Security Agency (CISA) confirmed on Thursday. About CVE-2024-.....»»
A closer look at the 2023-2030 Australian Cyber Security Strategy
In this Help Net Security video, David Cottingham, CEO of Airlock Digital, discusses the 2023-2030 Australian Cyber Security Strategy and reviews joint and individual cybersecurity efforts, progress, and strategies over the past year. The Australian.....»»
Netflix now lets you share screenshots of your favorite moments from a movie or show
Pretty much every video streaming platform has DRM-protected content, which aims to prevent users from distributing copyrighted material. Unfortunately, this also means that users can’t easily share screenshots of specific moments of something they.....»»