Unpatched Zimbra RCE bug exploited by attackers (CVE-2022-41352)
A still unpatched vulnerability (CVE-2022-41352) in Zimbra Collaboration is being exploited by attackers to achieve remote code execution on vulnerable servers. About the vulnerability Zimbra Collaboration (formerly Zimbra Collaboration Suite) is clo.....»»
Microbes in environment drove methane emissions more than fossil fuels between 2020 and 2022, analysis finds
Microbes in the environment, not fossil fuels, have been driving the recent surge in methane emissions globally, according to a new, detailed analysis published Oct 28 in the Proceedings of the National Academy of Sciences by CU Boulder researchers a.....»»
iPhone 16 battery drain bug is affecting users for reasons unknown
I covered iPhone 16 battery life extensively since Apple unveiled the phone, so I know all four models should offer decent-to-great battery life. Battery life … The post iPhone 16 battery drain bug is affecting users for reasons unknown appeare.....»»
Israeli orgs targeted with wiper malware via ESET-branded emails
Attackers have tried to deliver wiper malware to employees at organizations across Israel by impersonating cybersecurity company ESET via email. The phishing email The attack took the form of a phishing email ostensibly sent by the “Eset Advanc.....»»
Stephen King’s Fairy Tale will now be a 10-episode A24 TV series, not a movie
Fairy Tale, a 2022 dark fantasy novel by author Stephen King, is being adapted into a 10-episode TV series at A24......»»
Defenders must adapt to shrinking exploitation timelines
A new report from Mandiant reveals that the average time-to-exploit vulnerabilities before or after a patch is released has plunged to just five days in 2023, down from 32 days in 2021 in 2022. One reason for this is the fact that, in 2023, exploitat.....»»
How to fix Amazon Prime Video not streaming 4K content bug
This tutorial explains how you can fix the Amazon Prime Video bug that does not let it stream content in 4K. The post How to fix Amazon Prime Video not streaming 4K content bug appeared first on Phandroid. Amazon Prime Video is home to som.....»»
Attackers deploying red teaming tool for EDR evasion
Threat actors are leveraging the open-source EDRSilencer tool to evade endpoint detection and response systems, Trend Micro researchers have noticed. About EDRSilencer The software, which is intended for red teaming, is being abused to “silence.....»»
87,000+ Fortinet devices still open to attack, are yours among them? (CVE-2024-23113)
Last week, CISA added CVE-2024-23113 – a critical vulnerability that allows unauthenticated remote code/command execution on unpatched Fortinet FortiGate firewalls – to its Known Exploited Vulnerabilities catalog, thus confirming that it&.....»»
Astronomers observe a strong superflare from giant star
Using the Neutron Star Interior Composition Explorer (NICER) and various ground-based telescopes, an international team of astronomers have performed observations of a strong X-ray superflare which occurred in 2022 on a giant star known as HD 251108......»»
Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572) For October 2024 Patch Tuesday, Microsoft has released fixes.....»»
‘Pachinko’s showrunner is not sure whether the show will season 3: ‘You call and ask them’
Pachinko has been one of the most critically acclaimed on Apple TV+ since it first debuted in 2022. But will it get a third season?.....»»
Save $250 on Apple’s MacBook air and say bye to your old craptop for good
The 2022 Apple MacBook Air M2 is on sale at Amazon as a post-Big Deal Days promotion for $750, which is 25% off. Dump your old laptop and upgrade today......»»
Using ChatGPT to make fake social media posts backfires on bad actors
OpenAI claims cyber threats are easier to detect when attackers use ChatGPT. Using ChatGPT to research cyber threats has backfired on bad actors, OpenAI revealed in a report analy.....»»
Actively exploited Firefox zero-day fixed, update ASAP! (CVE-2024-9680)
Mozilla has pushed out an emergency update for its Firefox and Firefox ESR browsers to fix a vulnerability (CVE-2024-9680) that is being exploited in the wild. About CVE-2024-9680 Reported by ESET malware researcher Damien Schaeffer, CVE-2024-9680 is.....»»
Is China pulling ahead in AI video synthesis? We put Minimax to the test.
With China's AI video generators pushing memes into weird territory, it was time to test one out. If 2022 was the year AI image generators went mainstream, 2024 has arguably been.....»»
IIHS finds significant improvement in seat belt safety alerts
Since testing began in 2022, brands are releasing models with enhanced alerts, though safety improvements vary across different vehicles......»»
Is China pulling ahead in AI video synthesis? We put Minimax to the test
With China's AI video generators pushing memes into weird territory, it was time to test one out. If 2022 was the year AI image generators went mainstream, 2024 has arguably been.....»»
Whoa, the Echo Dot 5th Gen is 54% off today — only $23
If you didn't know, the Echo Dot 5th Gen (2022 release) is only $23 today thanks to Prime Big Deal Days. It's a must-shop deal!.....»»
Exploit code for critical GitLab auth bypass flaw released (CVE-2024-45409)
If you run a self-managed GitLab installation with configured SAML-based authentication and you haven’t upgraded it since mid-September, do it now, because security researchers have published an analysis of CVE-2024-45409 and an exploit script.....»»
Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572)
For October 2024 Patch Tuesday, Microsoft has released fixes for 117 security vulnerabilities, including two under active exploitation: CVE-2024-43573, a spoofing bug affecting the Windows MSHTML Platform, and CVE-2024-43572, a remote code execution.....»»