How EU lawmakers can make mandatory vulnerability disclosure responsible
There is a standard playbook and best practice for when an organization discovers or is notified about a software vulnerability: The organization works quickly to fix the problem and, once a fix is available, discloses that vulnerability for the bene.....»»
Apple’s encrypted messaging is in danger in the UK — here’s why
Lawmakers in the UK are seeking access to your personal messages, and companies like Apple and Meta are ready to fight......»»
Air Pollution Is Deadlier Than You Think
Poor air quality doesn’t just cause lung cancer. It may also be responsible for other cancers, strokes, diabetes, and more......»»
PoC for Arcserve UDP authentication bypass flaw published (CVE-2023-26258)
An authentication bypass vulnerability (CVE-2023-26258) in the Arcserve Unified Data Protection (UDP) enterprise data protection solution can be exploited to compromise admin accounts and take over vulnerable instances, MDSec researchers Juan Manuel.....»»
Gravesite robbers responsible for $62K in thefts busted by AirTag
Tired of their uncle's gravesite being robbed, a Texas family used a stealthily hidden AirTag to catch the thieves in the act.AirTag What the family didn't bank on was that their clever use of Apple's item tracker would help authorities discover more.....»»
Diatom / bacteria symbiosis in the open ocean explored
A study published in PNAS Nexus explores the genetic expression of a photosynthetic symbiont that lives inside an abundant marine organism. Marine diatoms are responsible for one-fifth of global photosynthesis. Many are coastal, but diatom-diazotroph.....»»
Casualties keep growing in this month’s mass exploitation of MOVEit 0-day
The dramatic fallout continues, with as many as 122 organizations now breached. Enlarge (credit: Getty Images) The dramatic fallout continues in the mass exploitation of a critical vulnerability in a widely used file-tra.....»»
States are weakening child labor restrictions nearly 8 decades after the US government took kids out of the workforce
A movement to weaken American child labor protections at the state level began in 2022. By June 2023, Arkansas, Iowa, New Jersey and New Hampshire had enacted this kind of legislation, and lawmakers in at least another eight states had introduced sim.....»»
Former App Store director criticizes review process, blames Phil Schiller for app rejections
Phillip Shoemaker is a former App Store director who was responsible for leading app approvals until he left the company in 2016. Since then, Shoemaker has publicly criticized Apple for its strict App Store rules. In a new interview with MobileGamer.....»»
PoC exploit released for Cisco AnyConnect, Secure Client vulnerability (CVE-2023-20178)
Proof-of-concept (PoC) exploit code for the high-severity vulnerability (CVE-2023-20178) in Cisco Secure Client Software for Windows and Cisco AnyConnect Secure Mobility Client Software for Windows has been published. About the vulnerability Cisco Se.....»»
Tanium strengthens threat identification capabilities and enhances endpoint reach
Tanium released major enhancements to the Tanium Software Bill of Materials (SBOM) that now include Common Vulnerability and Exposures (CVE) information. Software supply chain attacks continue to spike due in part to the increasing reliance of organi.....»»
Microsoft Teams vulnerability allows attackers to deliver malware to employees
Security researchers have uncovered a bug that could allow attackers to deliver malware directly into employees’ Microsoft Teams inbox. “Organisations that use Microsoft Teams inherit Microsoft’s default configuration which allows users.....»»
Facebook vows to restrict news access in Canada
Facebook owner Meta will restrict news access in Canada after lawmakers passed legislation designed to force it to pay news outlets for hosting their content......»»
Reading between the lines of CSR disclosure
Investors are increasingly holding companies to high corporate social responsibility (CSR) standards. That's the main reason more and more companies are choosing to disclose information about their social and environmental impact, either in standalon.....»»
Researchers reveal how the influenza A more effectively infect its hosts
Influenza A is one of two influenza viruses that fuel costly annual flu seasons and is a near constant threat to humans and many other animals. It's also responsible for occasional pandemics that, like the one in 1918, leave millions dead and wreak h.....»»
Study finds firms focused on environmental, social and governance have high-quality financial reporting
Chinese companies that invest in environmental and socially responsible projects have high-quality financial reporting and accountability, according to a new study from Charles Darwin University (CDU) researchers......»»
TikTok acknowledges some US creator data may be stored in China
TikTok has acknowledged to US lawmakers that some personal information belonging to creators on the platform may be stored in China, outside of the protections that the company applies to other types of US user data......»»
Apple patched actively exploited iMessage bug in latest updates
Don't hold off too long on updating to iOS 16.5.1 and the other new public releases, as Apple has patched multiple security issues that were actively exploited.iMessage vulnerability patchedApple released iOS 16.5.1, iPadOS 16.5.1, macOS Ventura 13.4.....»»
Hackers targeted DMV to expose personal data of 9.5 million people
A vulnerability in the MOVEit file transfer software has affected the personal records of millions of Americans across several states......»»
DMV-focused exploit leaves data of 9.5 million U.S. residents exposed
A vulnerability in the MOVEit file transfer software has affected the personal records of millions of Americans across several states......»»
Study: Executive functions in fish brains improve with experimental expansion of relative telencephalon size
The telencephalon is the part of the brain responsible for executive functions in fish, according to an experimental study published in PNAS Nexus......»»