Vulnerability in DJI drones may reveal pilot’s location
Serious security vulnerabilities have been identified in multiple DJI drones. These weaknesses had the potential to allow users to modify crucial drone identification details such as its serial number and even bypass security mechanisms that enable a.....»»
Trying to outrun Ukrainian drones? Kursk traffic cams still issue speeding tickets.
Drones are everywhere. Traffic cameras don't care. Enlarge / Ukrainian FPV drone hunting Russian army assets along a road. Imagine receiving a traffic ticket in the mail because you were speeding down a Russian road in.....»»
Mathematicians debunk GPS assumptions to offer improvements
The summer holidays are ending, which for many concludes with a long drive home and reliance on GPS devices to get safely home. But every now and then, GPS devices can suggest strange directions or get briefly confused about your location. But until.....»»
Dragos Platform updates streamline OT threat and vulnerability workflows
Dragos announced the latest release of the Dragos Platform, an OT network visibility and cybersecurity platform. The updates provide industrial and critical infrastructure organizations with even deeper and enriched visibility into all assets in thei.....»»
Critical Fortra FileCatalyst Workflow vulnerability patched (CVE-2024-6633)
Organizations using Fortra’s FileCatalyst Workflow are urged to upgrade their instances, so that attackers can’t access an internal HSQL database by exploiting known static credentials (CVE-2024-6633). “Once logged in to the HSQLDB,.....»»
APT group exploits WPS Office for Windows RCE vulnerability (CVE-2024-7262)
ESET researchers discovered a remote code execution vulnerability in WPS Office for Windows (CVE-2024-7262). APT-C-60, a South Korea-aligned cyberespionage group, was exploiting it to target East Asian countries. When examining the root cause, ESET d.....»»
A YouTube video really can remove water from your iPhone
A YouTube video claiming it can remove water from your iPhone might seem up there with emails from Nigerian princes and videos of Elon Musk promoting some new cryptocurrency, but tests reveal that it does actually work … somewhat. A tech writer.....»»
Versa Director zero-day exploited to compromise ISPs, MSPs (CVE-2024-39717)
Advanced, persistent attackers have exploited a zero-day vulnerability (CVE-2024-39717) in Versa Director to compromise US-based managed service providers with a custom-made web shell dubbed VersaMem by the researchers. The malware harvests credentia.....»»
Teenage Maurice Sendak illustrated his teacher’s 1947 pop-sci book
Drawings of Atomics for the Millions "reveal early postwar anxieties about nuclear war." Enlarge / A young Maurice Sendak’s illustration of two possible outcomes of atomic power for the 1947 pop-sci book Atomics for the Million.....»»
SonicWall patches critical flaw affecting its firewalls (CVE-2024-40766)
SonicWall has patched a critical vulnerability (CVE-2024-40766) in its next-gen firewalls that could allow remote attackers unauthorized access to resources and, in specific conditions, to crash the appliances. About CVE-2024-40766 CVE-2024-40766 is.....»»
Microscopic fossilized shells reveal ancient climate change patterns
At the end of the Paleocene and beginning of the Eocene epochs, between 59 to 51 million years ago, Earth experienced dramatic warming periods, both gradual periods stretching millions of years and sudden warming events known as hyperthermals......»»
Satellites reveal ecosystems most vulnerable to drought
More severe droughts that will also last longer: this will primarily be a problem for irrigated croplands, as discovered by environmental scientist Qi Chen. Mixed forests with a variety of plant species will be the least vulnerable. Chen compared the.....»»
Nuclei: Open-source vulnerability scanner
Nuclei is a fast and customizable open-source vulnerability scanner powered by YAML-based templates. With its flexible templating system, Nuclei can be adapted to perform various security checks. It can send requests to multiple targets using customi.....»»
New images reveal global air quality trends
The global concentrations of one of the main air pollutants known to affect human health has been graphically illustrated for the first time by a team of scientists......»»
Another critical SolarWinds Web Help Desk bug fixed (CVE-2024-28987)
A week after SolarWinds released a fix for a critical code-injection-to-RCE vulnerability (CVE-2024-28986) in Web Help Desk (WHD), another patch for another critical flaw (CVE-2024-28987) in the company’s IT help desk solution has been pushed o.....»»
Vulnerability prioritization is only the beginning
To date, most technology solutions focused on vulnerability management have focused on the prioritization of risks. That usually took the shape of some risk-ranking structure displayed in a table with links out to the CVEs and other advisory or threa.....»»
Critical GitHub Enterprise Server auth bypass flaw fixed (CVE-2024-6800)
A critical vulnerability (CVE-2024-6800) affecting all currently supported versions of GitHub Enterprise Server (GHES) may allow attackers to gain unrestricted access to the instance’s contents. The issue, reported via the GitHub Bug Bounty pro.....»»
New Chrome zero-day actively exploited, patch quickly! (CVE-2024-7971)
A new Chrome zero-day vulnerability (CVE-2024-7971) exploited by attackers in the wild has been fixed by Google. About CVE-2024-7971 CVE-2024-7971 is a high-severity vulnerability caused by a type confusion weakness in V8, the open-source JavaScript.....»»
Chantey is a new pirate metal rhythm game — and it’s launching on Game Boy and Chromatic
Digital Trends can exclusively reveal Chantey, a pirate metal rhythm adventure game coming to Chromatic and Game Boy in 2025......»»
Pilot study uses recycled glass to grow plants for salsa ingredients
Tortilla chips and fresh salsa are tasty in themselves, but they could be even more appealing if you grow the ingredients in a sustainable way. Researchers report that cilantro, bell pepper and jalapeño can be cultivated in recycled glass from disca.....»»
3 years after its reveal, Arc Raiders reemerges as a completely different game
Extraction shooter Arc Raiders looks promising, but the version of it we'll get in 2025 is very different than what was originally announced......»»