Experimental News Clipping Site

Tag: identifiers

  • The Register: China’s Silk Typhoon, tied to US Treasury break-in, now hammers IT and govt targets

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/03/05/china_silk_typhoon_update/ Source: The Register Title: China’s Silk Typhoon, tied to US Treasury break-in, now hammers IT and govt targets Feedly Summary: They’re good at zero-day exploits, too Silk Typhoon, the Chinese government crew believed to be behind the December US Treasury intrusions, has been abusing stolen API keys and cloud credentials in ongoing…

  • The Register: How Google tracks Android device users before they’ve even opened an app

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/03/04/google_android/ Source: The Register Title: How Google tracks Android device users before they’ve even opened an app Feedly Summary: No warning, no opt-out, and critic claims … no consent Research from a leading academic shows Android users have advertising cookies and other gizmos working to build profiles on them even before they open…

  • Hacker News: Quick correlation of vulnerabilities from various sources

    by

    Kurt Seifried
    in

    Source URL: https://github.com/vulnerability-lookup/vulnerability-lookup Source: Hacker News Title: Quick correlation of vulnerabilities from various sources Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses Vulnerability-Lookup, a platform that enhances the management of vulnerabilities by facilitating quick correlation from various sources and supporting Coordinated Vulnerability Disclosure (CVD). Its collaborative features allow users to comment…

  • Hacker News: Everyone knows your location: tracking myself down through in-app ads

    by

    Kurt Seifried
    in

    Source URL: https://timsh.org/tracking-myself-down-through-in-app-ads/ Source: Hacker News Title: Everyone knows your location: tracking myself down through in-app ads Feedly Summary: Comments AI Summary and Description: Yes Summary: The text highlights a significant geolocation data leak involving over 2,000 apps that collect user data without consent, revealing privacy risks from intricate advertising networks. The author’s personal investigation…

  • Cloud Blog: How we’re making GKE more transparent with supply-chain attestation and SLSA

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/identity-security/how-were-making-gke-more-secure-with-supply-chain-attestation-and-slsa/ Source: Cloud Blog Title: How we’re making GKE more transparent with supply-chain attestation and SLSA Feedly Summary: What goes into your Kubernetes software? Understanding the origin of the software components you deploy is crucial for mitigating risks and ensuring the trustworthiness of your applications. To do this, you need to know your…

  • Hacker News: Malicious extensions circumvent Google’s remote code ban

    by

    Kurt Seifried
    in

    Source URL: https://palant.info/2025/01/20/malicious-extensions-circumvent-googles-remote-code-ban/ Source: Hacker News Title: Malicious extensions circumvent Google’s remote code ban Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text discusses security vulnerabilities related to malicious browser extensions in the Chrome Web Store, focusing on how they can execute remote code and compromise user privacy. It critiques Google’s policies regarding…