Unlimited miles and nights: Vulnerability found in rewards programs
Points.com, used by major travel rewards programs, exposed user data... and more. Enlarge (credit: Jose A. Bernat Bacete) Travel rewards programs like those offered by airlines and hotels tout the specific perks of joi.....»»
Want to walk in space? It might cost you more than money
A tech billionaire has become the first layperson to perform a space walk. Hundreds of miles above Earth, Jared Isaacman took part in an intricate performance of science and engineering that often comes with some serious health risks, even for profes.....»»
Billionaire"s spacewalk with SpaceX delayed several hours hundreds of miles above Earth
A billionaire will have to wait a little longer to perform the first private spacewalk after SpaceX delayed Thursday's spacewalk by a few hours......»»
Tenable AI Aware provides exposure insight into AI applications, libraries and plugins
Tenable released AI Aware, advanced detection capabilities designed to surface artificial intelligence solutions, vulnerabilities and weaknesses available in Tenable Vulnerability Management. Tenable AI Aware provides exposure insight into AI applica.....»»
CISA confirms that SonicWall vulnerability is getting exploited (CVE-2024-40766)
The US Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2024-40766 – a recently fixed improper access control vulnerability affecting SonicWall’s firewalls – to its Known Exploited Vulnerabilities catalog, thus.....»»
Zyxel fixes critical command injection flaw in EOL NAS devices (CVE-2024-6342)
Users of Zyxel network-attached storage (NAS) devices are urged to implement hotfixes addressing a critical and easily exploited command injection vulnerability (CVE-2024-6342). About CVE-2024-6342 Zyxel NAS devices are generally used by small to med.....»»
Tech stack uniformity has become a systemic vulnerability
Crashes due to faulty updates are nothing new; in fact, one reason IT teams often delay updates is their unreliability and tendency to disrupt the organization’s day-to-day operations. Zero-days are also an old phenomenon. In the past, due to a lac.....»»
Rivian joins Tesla and Lucid with fresh referral programs
Rivian's new rewards program offers a $750 credit and six months of free charging to the Rivian owner making the referral and to the buyer of a new R1T pickup or R1S crossover, the company said......»»
Veeam Backup & Replication RCE flaw may soon be leveraged by ransomware gangs (CVE-2024-40711)
CVE-2024-40711, a critical vulnerability affecting Veeam Backup & Replication (VBR), could soon be exploited by attackers to steal enterprise data. Discovered and reported by Code WHite researcher Florian Hauser, the vulnerability can be leveraged fo.....»»
California to get first new national marine sanctuary in 32 years, banning offshore oil drilling along miles of coast
A long-running effort by native tribes and environmentalists to establish the first new national marine sanctuary along California's coastline in 32 years—the aquatic version of a new national park—where offshore oil drilling would be prohibited.....»»
Exploring how income, race and design affect pedestrian casualties
Pedestrian fatalities in the United States have increased more than 50% over the last decade, with 1 in 6 traffic deaths involving pedestrians. Programs like Vision Zero and Safe Systems focus on making transportation safe for vulnerable users, prima.....»»
Week in review: Vulnerability allows Yubico security keys cloning, Patch Tuesday forecast
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Vulnerability allows Yubico security keys to be cloned Researchers have unearthed a cryptographic vulnerability in popular Yubico (FIDO) hardware se.....»»
Feds investigate frequent flyer programs at four major airlines
Feds investigate frequent flyer programs at four major airlines.....»»
Apache OFBiz team patches critical RCE vulnerability (CVE-2024-45195)
For the fourth time in the last five months, Apache OFBiz users have been advised to upgrade their installations to fix a critical flaw (CVE-2024-45195) that could lead to unauthenticated remote code execution. About CVE-2024-45195 Apache OFBiz is an.....»»
Binarly Transparency Platform 2.5 identifies critical vulnerabilities before they can be exploited
Binarly announced Binarly Transparency Platform 2.5 with several features designed to enhance software vulnerability management and improve security posture across enterprise environments. The key highlight of this release is the innovative Reachabil.....»»
STEM afterschool programs" benefits extend to friend groups
Research has established that youth participation in science-focused afterschool clubs leads to a higher science identity—or seeing oneself as a science kind of person or as a scientist—and that peers exert influence over interests, even in acade.....»»
trackd AutoPilot leverages historical patch disruption data
trackd has released a powerful rules engine that uses its patch disruption data to enable auto-patching with confidence, and based on actual data. “There’s only one reason that vulnerability management exists as a discipline in cyber secu.....»»
Business routers vulnerable to OS command injection attack
Zyxel fixes a 9.8-severity vulnerability in multiple endpoints......»»
Vulnerability allows Yubico security keys to be cloned
Researchers have unearthed a cryptographic vulnerability in popular Yubico (FIDO) hardware security keys and modules that may allow attackers to clone the devices. But the news is not as catastrophic as it may seem at first glance. “The attacke.....»»
Samba 4.21 comes with upgraded security features
Samba is the standard suite of programs that enables seamless interoperability between Linux/Unix and Windows systems. Version 4.21 has been officially released. Hardening In previous versions of Samba, if a user or group name in either option could.....»»
Amateur Scientist: Detect Cosmic Dust & Space Debris
Tweak the Make: Twilight photometer to detect micrometeors and orbital junk 400 miles high. The post Amateur Scientist: Detect Cosmic Dust & Space Debris appeared first on Make: DIY Projects and Ideas for Makers......»»