Tag: security researchers
-
The Register: WhatsApp finally fixes View Once flaw that allowed theft of supposedly vanishing pics
Source URL: https://www.theregister.com/2024/12/10/whatsapp_view_once/ Source: The Register Title: WhatsApp finally fixes View Once flaw that allowed theft of supposedly vanishing pics Feedly Summary: And it only took four months, tut WhatsApp has fixed a problem with its View Once feature, designed to protect people’s privacy with automatically disappearing pictures and videos.… AI Summary and Description: Yes…
-
The Register: Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket
Source URL: https://www.theregister.com/2024/12/09/aws_credentials_stolen/ Source: The Register Title: Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket Feedly Summary: ShinyHunters-linked heist thought to have been ongoing since March Exclusive A massive online heist targeting AWS customers during which digital crooks abused misconfigurations in public websites and stole source code, thousands of…
-
The Register: Interpol nabs thousands, seizes millions in global cybercrime-busting op
Source URL: https://www.theregister.com/2024/12/01/interpol_cybercrime_busting/ Source: The Register Title: Interpol nabs thousands, seizes millions in global cybercrime-busting op Feedly Summary: Also, script kiddies still a threat, Tornado Cash is back, UK firms lose billions to avoidable attacks, and more Infosec in brief Interpol and its financial supporters in the South Korean government are back with another round…
-
The Register: First-ever UEFI bootkit for Linux in the works, experts say
Source URL: https://www.theregister.com/2024/11/27/firstever_uefi_bootkit_for_linux/ Source: The Register Title: First-ever UEFI bootkit for Linux in the works, experts say Feedly Summary: Bootkitty doesn’t bite… yet Security researchers say they’ve stumbled upon the first-ever UEFI bootkit targeting Linux, illustrating a key moment in the evolution of such tools.… AI Summary and Description: Yes Summary: The detection of “Bootkitty,”…
-
Hacker News: D-Link says it won’t patch 60k older modems
Source URL: https://www.techradar.com/pro/security/d-link-says-it-wont-patch-60-000-older-modems-as-theyre-not-worth-saving Source: Hacker News Title: D-Link says it won’t patch 60k older modems Feedly Summary: Comments AI Summary and Description: Yes Summary: Security researchers have identified critical vulnerabilities in D-Link modems that have reached end-of-life status, which the company will not patch. This situation highlights the importance of maintaining infrastructure security and the…
-
Cloud Blog: Cloud CISO Perspectives: Ending ransomware starts with more reporting
Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-ransomware-cyber-insurance-reporting/ Source: Cloud Blog Title: Cloud CISO Perspectives: Ending ransomware starts with more reporting Feedly Summary: Welcome to the second Cloud CISO Perspectives for November 2024. Today, Monica Shokrai, head of business risk and insurance, Google Cloud, and Kimberly Goody, cybercrime analysis lead, Google Threat Intelligence Group, explore the role cyber-insurance can play…
-
The Register: QNAP NAS users locked out after firmware update snafu
Source URL: https://www.theregister.com/2024/11/25/qnap_faulty_update/ Source: The Register Title: QNAP NAS users locked out after firmware update snafu Feedly Summary: Affected customers gripe about storage biz’s tech support Owners of QNAP network-attached storage (NAS) boxes are finding that a firmware update has left them unable to log into their device, and a reset doesn’t seem to fix…
-
Cisco Talos Blog: Finding vulnerabilities in ClipSp, the driver at the core of Windows’ Client License Platform
Source URL: https://blog.talosintelligence.com/finding-vulnerabilities-in-clipsp-the-driver-at-the-core-of-windows-client-license-platform/ Source: Cisco Talos Blog Title: Finding vulnerabilities in ClipSp, the driver at the core of Windows’ Client License Platform Feedly Summary: By Philippe LaulheretClipSP (clipsp.sys) is a Windows driver used to implement client licensing and system policies on Windows 10 and 11 systems.Cisco Talos researchers have discovered eight vulnerabilities related to clipsp.sys…