Tag: disclosure
-
Hacker News: Multiple security flaws found in DeepSeek iOS app, incl sending unencrypted data
Source URL: https://9to5mac.com/2025/02/07/multiple-security-flaws-found-in-deepseek-ios-app-including-sending-unencrypted-data/ Source: Hacker News Title: Multiple security flaws found in DeepSeek iOS app, incl sending unencrypted data Feedly Summary: Comments AI Summary and Description: Yes Summary: The DeepSeek iOS app has been found to contain multiple serious security flaws, including disabling essential encryption practices. These vulnerabilities have raised significant privacy and security concerns,…
-
Hacker News: California bill would require bots to disclose that they are bots
Source URL: https://www.veeto.app/bill/1955756 Source: Hacker News Title: California bill would require bots to disclose that they are bots Feedly Summary: Comments AI Summary and Description: Yes Summary: The legislation introduced by Assembly Member Wilson represents a significant shift in California’s regulation of automated online communications, requiring all bots to identify themselves, thus enhancing transparency around…
-
Hacker News: U.S. Government Disclosed 39 Zero-Day Vulnerabilities in 2023, First-Ever Report
Source URL: https://www.zetter-zeroday.com/u-s-government-disclosed-39-zero-day-vulnerabilities-in-2023-per-first-ever-report/ Source: Hacker News Title: U.S. Government Disclosed 39 Zero-Day Vulnerabilities in 2023, First-Ever Report Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the U.S. government’s disclosure of zero-day vulnerabilities through its Vulnerabilities Equities Process (VEP) in 2023. It highlights a significant shift in the level of transparency around…
-
Hacker News: Quick correlation of vulnerabilities from various sources
Source URL: https://github.com/vulnerability-lookup/vulnerability-lookup Source: Hacker News Title: Quick correlation of vulnerabilities from various sources Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses Vulnerability-Lookup, a platform that enhances the management of vulnerabilities by facilitating quick correlation from various sources and supporting Coordinated Vulnerability Disclosure (CVD). Its collaborative features allow users to comment…
-
Alerts: CISA Adds Four Known Exploited Vulnerabilities to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2025/02/04/cisa-adds-four-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Four Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-45195 Apache OFBiz Forced Browsing Vulnerability CVE-2024-29059 Microsoft .NET Framework Information Disclosure Vulnerability CVE-2018-9276 Paessler PRTG Network Monitor OS Command Injection Vulnerability CVE-2018-19410 Paessler PRTG Network…
-
Hacker News: AMD: Microcode Signature Verification Vulnerability
Source URL: https://github.com/google/security-research/security/advisories/GHSA-4xq7-4mgh-gp6w Source: Hacker News Title: AMD: Microcode Signature Verification Vulnerability Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a security vulnerability in AMD Zen-based CPUs identified by Google’s Security Team, which allows local administrator-level attacks on the microcode verification process. This is significant for professionals in infrastructure and hardware…
-
The Register: VMware plugs steal-my-credentials holes in Cloud Foundation
Source URL: https://www.theregister.com/2025/01/30/vmware_infomration_disclosure_flaws/ Source: The Register Title: VMware plugs steal-my-credentials holes in Cloud Foundation Feedly Summary: Consider patching soon because cybercrooks love to hit vulnerable tools from Broadcom’s virtualization giant Broadcom has fixed five flaws, collectively deemed “high severity," in VMware’s IT operations and log management tools within Cloud Foundation, including two information disclosure bugs…