Week in review: MS Exchange zero-days exploited, AD attack paths, developing secure APIs
SpyCast: Cross-platform mDNS enumeration tool SpyCast is a cross-platform mDNS enumeration tool that can work either in active mode by recursively querying services or in passive mode by only listening to multicast packets. Attackers use novel techni.....»»
Thousands of servers hacked in ongoing attack targeting Ray AI framework
Researchers say it's the first known in-the-wild attack targeting AI workloads. Enlarge (credit: Getty Images) Thousands of servers storing AI workloads and network credentials have been hacked in an ongoing attack campa.....»»
Long-period oscillations control the sun"s differential rotation: Study
The sun's differential rotation pattern has puzzled scientists for decades: While the poles rotate with a period of approximately 34 days, mid-latitudes rotate faster and the equatorial region requires only approximately 24 days for a full rotation......»»
Apple users targeted by sophisticated phishing attack to reset their ID password
There are many known phishing attacks that target users of Apple devices to gain access to their Apple ID. However, a new “elaborate” attack uses a bug in the Apple ID password reset feature with “push bombing” or “MFA fatigue” techniques.....»»
WSJ profiles Phil Schiller, who is working nearly 80 hours a week defending the App Store
As Apple continues to face App Store battles around the world, it’s leaning heavily on Phil Schiller, its former Senior Vice President of Worldwide Marketing. A new report from The Wall Street Journal gives an interesting look at how Schiller, who.....»»
Researchers find the more flood driving factors there are, the more extreme a flood is
There are several factors that play an important role in the development of floods: air temperature, soil moisture, snow depth, and the daily precipitation in the days before a flood. In order to better understand how individual factors contribute to.....»»
The Xiaomi 14 Ultra has the best smartphone camera I’ve ever used
The Xiaomi 14 Ultra has one of the very best cameras I've ever used, but does the rest of the phone stack up to it? We find out in our review......»»
Review: Withings Body Scan w/ segmental body comp, nerve activity, Apple Health, more
The most recent smart scale from Withings is so advanced the company calls it a “health station.” I’ve been testing the Withings Body Scan and its features like segmental body composition measurements, nerve activity, 6-lead ECG, and more, whic.....»»
Google Brings “Circle to Search” for More Pixel Models
Google recently announced that it will be bringing over the new AI-powered search feature to more Pixel smartphones, beginning this week. The post Google Brings “Circle to Search” for More Pixel Models appeared first on Phandroid......»»
“MFA Fatigue” attack targets iPhone owners with endless password reset prompts
Rapid-fire prompts sometimes followed with spoofed calls from "Apple support." Enlarge / They look like normal notifications, but opening an iPhone with one or more of these stacked up, you won't be able to do much of anything un.....»»
Pornhub prepared to block Florida if child safety law takes effect
Florida plans to start requiring ID for porn January 1. Enlarge (credit: Aurich Lawson | Getty Images) This week, Florida made headlines after passing HB 3, a law banning children under 14 from accessing social media wit.....»»
Microsoft opens a crack in console gaming’s decades-old walled garden
Competing marketplaces like the Epic Games Store could show up on Xbox in the future. Enlarge / Will the fragile Xbox balloon pop if that cage is opened? (credit: Aurich Lawson / Getty Images) Since the days of the NES,.....»»
Grok AI chatbot coming to all premium X subscribers this week
The Grok AI chatbot, which was previously going to be exclusive to X’s top-tier Premium+ subscribers, will instead be coming to all premium subscribers this week. The move is likely geared to boosting revenue in the face of falling usage and an.....»»
Apple quietly releases revised build of iOS 17.4.1 and iPadOS 17.4.1
Apple last week released iOS 17.4.1 and iPadOS 17.4.1 to iPhone and iPad users. Although the updates don’t add any new features, they do bring two important security patches. For some unknown reason, Apple has now quietly released a revised build o.....»»
CyberArk Secure Browser helps prevent breaches resulting from cookie theft
CyberArk launched CyberArk Secure Browser, an identity-centric secure browser, providing enhanced security and privacy alongside a familiar, productive user experience. Backed by intelligent privilege controls and simple to deploy across devices, Cyb.....»»
AI framework vulnerability is being used to compromise enterprise servers (CVE-2023-48022)
Attackers are leveraging a vulnerability (CVE-2023-48022) in Anyscale’s Ray AI software to compromise enterprise servers and saddle them with cryptominers and reverse shells. “To our knowledge, the attack started 7 months ago,” Avi.....»»
Apple confirms limited, in-person event for WWDC24, here’s how to apply
Apple has officially announced WWDC24 with the developer week kicking off on June 10. Like it’s done in recent years, the company is holding a special, invite-only in-person event to watch the keynote at Apple headquarters and more. Here’s how to.....»»
17,000+ Microsoft Exchange servers in Germany are vulnerable to attack, BSI warns
Around 12% of the 45,000 or so Microsoft Exchange servers in Germany that can be accessed from the Internet without restrictions “are so outdated that security updates are no longer offered for them,” the German Federal Office for Informa.....»»
Vercara UltraAPI offers protection against malicious bots and fraudulent activity
Vercara has launched UltraAPI, a product suite that protects APIs and web applications from malicious bots and fraudulent activity while ensuring regulatory compliance. Powered by Cequence Security UltraAPI helps organizations protect applications an.....»»
WWDC 2024 will show off Apple"s AI efforts on June 10
Apple has revealed that the 2024 Worldwide Developer Conference will run from June 10 until June 14, which will introduce the upcoming releases of iOS 18 and other operating systems.Apple's 2024 WWDC is June 10Usually held in the first week of June,.....»»
Dell’s Inspiron 14 Plus review: one hand tied behind its back
The Dell Inspiron 14 Plus 2024 is a good midrange laptop by most measures. However, its display isn't as good as some others at around the same price......»»