Sophos Firewall zero-day bug exploited weeks before fix
Chinese APT employs high-severity vulnerability against a number of companies.....»»
TikTok ban: Fast-track appeal granted as company sues US government [U]
Update: A US court has fast-tracked the appeal, which will be heard in September. TikTok owner Bytedance has just three weeks to file its arguments for the ban to be overturned. Bytedance, the parent company of TikTok, is suing the US government,.....»»
Apple confirms WWDC keynote details for AI-focused iOS 18, Platforms State of the Union, and more
Today less than two weeks out from the June 10 start of WWDC, Apple has detailed what developers and other observers can expect out of its annual conference this year, which is expected to bring a host of news centered around AI. more….....»»
Cybersecurity teams gear up for tougher challenges in 2024
In this Help Net Security video, Tom Gorup, VP of Security Services at Edgio, discusses the continually changing threat landscape. It is riddled with vulnerabilities that are frequently exploited and only intensify as geopolitics and state-sponsored.....»»
Some Google Messages for Android users receiving distorted GIFs from iPhones
In recent weeks, GIFs sent by iPhone users to Android devices running Google Messages have turned into distorted still images with missing dots/pixels throughout. more….....»»
Rumor: iOS 18 will let users create custom emoji using generative AI
We’re just two weeks away from WWDC, where Apple will showcase iOS 18 with new AI features, home screen customization updates, and more. According to a new report today, one of the new “standout AI features” will allegedly be the ability to use.....»»
Week in review: Google fixes yet another Chrome zero-day exploit, YouTube as a cybercrime channel
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Google fixes yet another Chrome zero-day exploited in the wild (CVE-2024-5274) For the eighth time this year, Google has released an emergency updat.....»»
Droplets that swim toward dissolution could inspire fluid microbots
Researchers discovered that microscopic liquid droplets swim toward solvent conditions that favor their dissolution. This mechanism may underlie some transport processes within living cells, and could be exploited to develop fluid micro robots......»»
Apache Flink flaw is back, and being actively exploited
An improper access control flaw is being actively exploited, CISA is warning......»»
Google fixes yet another Chrome zero-day exploited in the wild (CVE-2024-5274)
For the eighth time this year, Google has released an emergency update for its Chrome browser that fixes a zero-day vulnerability (CVE-2024-5274) with an in-the-wild exploit. About CVE-2024-5274 As per usual, Google keeps technical details of the vul.....»»
Fail2Ban: Ban hosts that cause multiple authentication errors
Fail2Ban is an open-source tool that monitors log files, such as /var/log/auth.log, and blocks IP addresses that exhibit repeated failed login attempts. It does this by updating system firewall rules to reject new connections from those IP addresses.....»»
Brunt Ice Shelf in Antarctica calves new iceberg
A large iceberg (380 km2), about the size of the Isle of Wight, has broken off the 150m-thick Brunt Ice Shelf. It broke off after a crack suddenly appeared in the ice shelf a few weeks ago. The final break happened in the early hours of Monday, 20 Ma.....»»
Rumor: iOS 18 to include new ‘smart song transitions’ feature for Apple Music
We’re less than three weeks away from WWDC, where Apple will announce iOS 18 and its array of new AI and new home screen customization features. A new rumor today suggests that Apple is also working on updates to Apple Music crossfade for iOS 18….....»»
Surviving reentry is the key goal for SpaceX’s fourth Starship test flight
Elon Musk says SpaceX aims to launch the fourth Starship test flight in about two weeks. Enlarge / SpaceX's fourth full-scale Starship rocket undergoes a fueling test Monday. (credit: SpaceX) After three test flights, Sp.....»»
Ford tells dealers to halt EV investments while it alters certification program
The automaker plans to work with its dealer council in the coming weeks to make changes in response to feedback from a series of nationwide dealer meetings......»»
Week in review: New Black Basta’s social engineering campaign, passing the CISSP exam in 6 weeks
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Black Basta target orgs with new social engineering campaign Black Basta, one of the most prolific ransomware-as-a-service operators, is trying out.....»»
9 Things You Should Do Before EA College Football 25 Arrives
The EA College Football 25 release date is just weeks away and there are some steps prospective buyers, and those who have pre-ordered, should take before the game lands on shelves. If you can believe it, EA’s first college football game in ove.....»»
How to port any N64 game to the PC in record time
"Static recompilation" is "the difference between weeks of work and years of work." Enlarge / "N-tel (64) Inside" (credit: Aurich Lawson | Getty Images) In recent years, we've reported on multiple efforts to reverse-engi.....»»
Google fixes third exploited Chrome zero-day in a week (CVE-2024-4947)
For the third time in the last seven days, Google has fixed a Chrome zero-day vulnerability (CVE-2024-4947) for which an exploit exists in the wild. About CVE-2024-4947 CVE-2024-4947 is a type confusion vulnerability in V8, Chrome’s JavaScript and.....»»
May 2024 Patch Tuesday: Microsoft fixes exploited zero-days (CVE-2024-30051, CVE-2024-30040)
For May 2024 Patch Tuesday, Microsoft has released fixes for 59 CVE-numbered vulnerabilities, including two zero-days (CVE-2024-30051, CVE-2024-30040) actively exploited by attackers. CVE-2024-30051 and CVE-2024-30040 CVE-2024-30051 is a heap-based b.....»»
How a GRC consultant passed the CISSP exam in six weeks
Ask any IT security professional which certification they would consider to be the “gold standard” in terms of prestige, credibility, or difficulty, and almost invariably they will answer: the CISSP. If an organization is seeking some peace regar.....»»