Undisclosed HomeKit flaw used by Cellebrite to attack Serbian journalists
Apple's HomeKit is under scrutiny, as Serbian authorities are suspected of exploiting it to install Pegasus spyware without any user interaction at all.MalwareReported by Amnesty International, at the center of the spyware campaign are two tools —.....»»
Apple readies smart home display and camera for 2025 and beyond on HomeKit Insider
On this episode of the HomeKit Insider Podcast Apple's 2025 smart home plans become more clear and more new products launch.HomeKit Insider PodcastWe saw two pieces of smart lock news this week. Nuki released the Nuki Lock Ultra in the EU — before.....»»
Apple’s smart home display already sounds like a convenience victory
Apple's first smart home device will integrate a screen that will serve as a HomeKit and FaceTime hub......»»
Palo Alto Networks firewalls, Expedition under attack (CVE-2024-9463, CVE-2024-9465)
Attackers have been spotted exploiting two additional vulnerabilities (CVE-2024-9463, CVE-2024-9465) in Palo Alto Networks’ Expedition firewall configuration migration tool, CISA has confirmed on Thursday. About the vulnerabilities (CVE-2024-94.....»»
Cybercriminals hijack DNS to build stealth attack networks
Hijacking domains using a ‘Sitting Ducks attack’ remains an underrecognized topic in the cybersecurity community. Few threat researchers are familiar with this attack vector, and knowledge is scarce. However, the prevalence of these attacks and t.....»»
Bitsight acquires Cybersixgill to help organizations manage cyber exposure
Bitsight announced it has signed a definitive agreement to acquire Cybersixgill, a global cyber threat intelligence (CTI) data provider. Together, Bitsight and Cybersixgill will provide visibility into an organization’s external attack surface,.....»»
Trump’s Administration Will Attack Health Care from Multiple Angles
The new Trump administration is likely to reduce subsidies for Affordable Care Act insurance plans and roll back Medicaid coverage. Public health authorities worry that antivaccine activist Robert F. Kennedy, Jr., will be empowered.....»»
Scientists identify flaw in astrophysics models of massive stars and supernovae
An international team of researchers has uncovered evidence that astrophysics models of massive stars and supernovae are inconsistent with observational gamma-ray astronomy......»»
Kuo: Apple to release its own smart home camera in 2026, with AI features
Apple analyst Ming-Chi Kuo reported today that Apple will enter the smart home camera market in 2026, with the company seemingly set to compete against third-party HomeKit cameras like the for the first time. The IP camera is targeted to hit annu.....»»
Immersive Labs AI Scenario Generator improves cyber skills against various attack types
Immersive Labs introduced AI Scenario Generator. This new capability enables organizations to generate threat scenarios for crisis simulations to ensure their workforces are ready for the latest threats. By inputting a few short prompts, customers ca.....»»
The changing face of identity security
It’s easy to see why identity security is often synonymous with user security. Social engineering tactics are the mainstay of the threat actor’s arsenal, and it’s rare to find an attack that doesn’t feature them to some degree. Getting hold o.....»»
Matter 1.4 is released, new Apple betas, & more news on HomeKit Insider
On this episode of the HomeKit Insider Podcast we talk about Apple's new betas, discuss the major Matter 1.4 release which adds new categories and other improvements, and more!HomeKit Insider PodcastBefore jumping into Matter, we got several new beta.....»»
Strategies for CISOs navigating hybrid and multi-cloud security
In this Help Net Security interview, Alex Freedland, CEO at Mirantis, discusses the cloud security challenges that CISOs need to tackle as multi-cloud and hybrid environments become the norm. He points out the expanded attack surfaces, the importance.....»»
HomeKit Weekly: Track your HomeKit device batteries with HomeBatteries
Keeping tabs on battery-powered HomeKit accessories like the can be challenging. From smart locks to motion sensors, battery status is often out of sight, out of mind—until the moment a device fails to respond. Enter HomeBatteries, an app designed.....»»
Security experts warn of new hacker strategy targeting Windows drivers
A new BYOVD attack ends with an infostealer and cryptominer inserted into your Windows PC. The threat campaign named SteelFox uses fake activators......»»
New survey finds alarming tolerance for attacks on the press in US, particularly among white, Republican men
Press freedom is a pillar of American democracy. But political attacks on US-based journalists and news organizations pose an unprecedented threat to their safety and the integrity of information......»»
Beware of phishing emails delivering backdoored Linux VMs!
Unknown attackers are trying to trick Windows users into spinning up a custom Linux virtual machine (VM) with a pre-configured backdoor, Securonix researchers have discovered. The campaign The attack began with a phishing email, they believe, but the.....»»
Google patches actively exploited Android vulnerability (CVE-2024-43093)
Google has delivered fixes for two vulnerabilities endangering Android users that “may be under limited, targeted exploitation”: CVE-2024-43047, a flaw affecting Qualcomm chipsets, and CVE-2024-43093, a vulnerability in the Google Play fr.....»»
Hundreds of code libraries posted to NPM try to install malware on dev machines
These are not the the developer tools you think they are. An ongoing attack is uploading hundreds of malicious packages to the open source node package manager (NPM) repository in.....»»
Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)
Synology has released fixes for an unauthenticated “zero-click” remote code execution flaw (CVE-2024-10443, aka RISK:STATION) affecting its popular DiskStation and BeeStation network attached storage (NAS) devices. About CVE-2024-10443 CV.....»»
Apple TV gains watch list, Apple hides Thread radios, and more new products on HomeKit Insider
On this episode of the HomeKit Insider Podcast we talk about Apple's continued use of hidden Thread radios, Apple TV's new watch list feature, and more new smart home products launching.HomeKit Insider PodcastRecently, Apple launched tvOS 18.1 which.....»»