Tag: security researchers
-
The Register: Miscreants ‘mass exploited’ Fortinet firewalls, ‘highly probable’ zero-day used
Source URL: https://www.theregister.com/2025/01/14/miscreants_mass_exploited_fortinet_firewalls/ Source: The Register Title: Miscreants ‘mass exploited’ Fortinet firewalls, ‘highly probable’ zero-day used Feedly Summary: Ransomware ‘not off the table,’ Arctic Wolf threat hunter tells El Reg Miscreants running a “mass exploitation campaign" against Fortinet firewalls, which peaked in December, may be using an unpatched zero-day vulnerability to compromise the equipment, according…
-
The Register: Crims backdoored the backdoors they supplied to other miscreants. Then the domains lapsed
Source URL: https://www.theregister.com/2025/01/08/backdoored_backdoors/ Source: The Register Title: Crims backdoored the backdoors they supplied to other miscreants. Then the domains lapsed Feedly Summary: Here’s what $20 gets you these days More than 4,000 unique backdoors are using expired domains and/or abandoned infrastructure, and many of these expose government and academia-owned hosts – thus setting these hosts…
-
Hacker News: Hacker gains access to the RP2350 OTP secret by glitching the RISC-V cores
Source URL: https://www.tomshardware.com/raspberry-pi/it-looks-like-the-raspberry-pi-rp2350-hacking-challenge-has-been-beaten-hacker-gains-access-to-the-otp-secret-by-glitching-the-risc-v-cores-to-enable-debugging Source: Hacker News Title: Hacker gains access to the RP2350 OTP secret by glitching the RISC-V cores Feedly Summary: Comments AI Summary and Description: Yes **Short Summary with Insight:** The text discusses a recent hacking challenge involving the Raspberry Pi RP2350 microcontroller, highlighting a presentation by engineer Aedan Cullen. He successfully executed…
-
Slashdot: Hackers Target Dozens of VPN, AI Extensions For Google Chrome To Compromise Data
Source URL: https://it.slashdot.org/story/25/01/02/2157246/hackers-target-dozens-of-vpn-ai-extensions-for-google-chrome-to-compromise-data Source: Slashdot Title: Hackers Target Dozens of VPN, AI Extensions For Google Chrome To Compromise Data Feedly Summary: AI Summary and Description: Yes Summary: The text discusses serious security concerns related to malicious updates of Chrome browser extensions, especially those connected with artificial intelligence tools and VPNs. It emphasizes the risks of…
-
Hacker News: Why Apple sends spyware victims to this nonprofit security lab
Source URL: https://techcrunch.com/2024/12/20/why-apple-sends-spyware-victims-to-this-nonprofit-security-lab/ Source: Hacker News Title: Why Apple sends spyware victims to this nonprofit security lab Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text discusses Apple’s proactive measures in alerting users about potential spyware attacks on their devices. It highlights the company’s unique approach of directing affected individuals to external organizations…
-
The Register: Iran-linked crew used custom ‘cyberweapon’ in US critical infrastructure attacks
Source URL: https://www.theregister.com/2024/12/13/iran_cyberweapon_us_attacks/ Source: The Register Title: Iran-linked crew used custom ‘cyberweapon’ in US critical infrastructure attacks Feedly Summary: IOCONTROL targets IoT and OT devices from a ton of makers, apparently An Iranian government-linked cybercriminal crew used custom malware called IOCONTROL to attack and remotely control US and Israel-based water and fuel management systems, according…