OpenWrt dominates, but vulnerabilities persist in OT/IoT router firmware
Forescout has published a new report examining the current state of the software supply chain in OT/IoT routers. The study uncovered that OT and IoT cellular routers and those used in small offices and homes contain outdated software components assoc.....»»
vCISO services thrive, but challenges persist
While 75% of service providers report high customer demand for vCISO functionality, a new Cynomi report reveals that only 21% are actively offering it—opening a window onto a growth area for service providers while emphasizing the growing centralit.....»»
Zyxel warns of vulnerabilities in a wide range of its products
Most serious vulnerabilities carry severity ratings of 9.8 and 8.1 out of a possible 10. Enlarge (credit: Getty Images) Networking hardware-maker Zyxel is warning of nearly a dozen vulnerabilities in a wide array of its.....»»
Starling Home Hub adds deeper HomeKit support for new 4th generation Nest thermostat
One reason I might consider upgrading to the new is its built-in Matter support. In practice, however, the Matter integration appears to be pretty lackluster. My favorite HomeKit bridge, the Starling Home Hub, has just released a new firmware up.....»»
Critical flaw in Zyxel’s secure routers allows OS command execution via cookie (CVE-2024-7261)
Zyxel has patched a myriad of vulnerabilities in its various networking devices, including a critical one (CVE-2024-7261) that may allow unauthenticated attackers to execute OS commands on many Zyxel access points (APs) and security routers by sendin.....»»
A macro look at the most pressing cybersecurity risks
Forescout’s 2024H1 Threat Review is a new report that reviews the current state of vulnerabilities, threat actors, and ransomware attacks in the first half of 2024 and compares them to H1 2023. “Attackers are looking for any weak point to bre.....»»
Expel partners with Wiz to enhance security for cloud environments
Expel announced a new strategic partnership with Wiz, a cloud-native application protection platform (CNAPP). The partnership provides an integration offering MDR for Wiz toxic risk combinations (including vulnerabilities, secrets, malware, and threa.....»»
There’s a scary new way to undo Windows security patches
A security researcher has released a new tool that can unpatch your Windows computer and expose it to old vulnerabilities......»»
PS5 controllers now work even better with your PC
The new PlayStation Accessories app is a revamped version of the existing Firmware Updater for DualSense Wireless Controller......»»
Adversaries love bots, short-lived IP addresses, out-of-band domains
Fastly found 91% of cyberattacks – up from 69% in 2023 – targeted multiple customers using mass scanning techniques to uncover and exploit software vulnerabilities, revealing an alarming trend in attacks spreading across a broader target base. In.....»»
Apple rolling out new beta firmware for AirPods Pro 2 ahead of iOS 18 release next month
Apple on Thursday released another new beta firmware for owners. This firmware is made specifically for users running iPad, as it adds new features such as head gestures. more….....»»
Fourth AirPods Pro 2 beta firmware now available for testers
Apple has released the fourth developer beta for the latest AirPods Pro 2 software, which lets testers try the nod and shake feature.Apple has released the fourth developer beta firmware for AirPods Pro 2The company provides developer betas for nearl.....»»
Updating AirPods firmware should be as easy as updating Beats devices on Android
Beats headphones or even from an iOS device is something really obscure. On Android, on the other hand, this process is much easier. more….....»»
New Beats firmware brings audio sharing to Beats Studio Pro
Apple subsidiary Beats by Dre has released new firmware for the Beats Studio Pro, which finally brings Audio Sharing to the headphones.An array of Beats Studio Pro headphones.On its release, the Beats Studio Pro offered quite a few positive features,.....»»
Beats Studio Pro gain multi-user audio sharing with new firmware
Apple has released new firmware for the . Beats’ premium over-ear headphones make a compelling—and much more affordable—alternative to AirPods Max, but lack a few AirPods features. One such feature has now been added via the new firmware: multi.....»»
Vulnerabilities in Microsoft macOS apps may give attackers access to microphone, camera
Vulnerabilities in popular Microsoft apps for macOS can be abused by attackers to record video and audio clips, take pictures, access and exfiltrate data and send emails, Cisco Talos researchers have discovered. Library injection vulnerabilities in M.....»»
Security flaws in Microsoft Mac apps could let attackers spy on users
Cisco Talos recently uncovered security vulnerabilities in several Microsoft apps for macOS that can potentially let attackers spy on your camera and other system components.Security flaws found in Microsoft apps for MacTalos claims to have found eig.....»»
Common API security issues: From exposed secrets to unauthorized access
Despite their role in connecting applications and driving innovation, APIs often suffer from serious security vulnerabilities. Recent investigations reveal that many organizations are struggling with exposed secrets such as passwords and API keys, wh.....»»
Video dominates mobile app revenue; TikTok coins reward live streamers
Video dominates mobile app revenue, according to a new report. Of the total $3.8B smartphone owners spent on entertainment apps last quarter, three billion of it was spent on streaming and short video apps. The most dramatic growth in earnings was.....»»
Critical Start helps organizations reduce cyber risk from vulnerabilities
Critical Start announced Critical Start Vulnerability Management Service (VMS) and Vulnerability Prioritization. These new offerings are a foundational pillar of Managed Cyber Risk Reduction, allowing organizations to assess, manage, prioritize, and.....»»
Researchers hack electronic shifters with a few hundred dollars of hardware
If you've got a Shimano Di2 groupset, be sure to update its firmware. Enlarge (credit: Dmytro Aksonov via Getty) Professional cycling has, in its recent history, been prone to a shocking variety of cheating methods and d.....»»