TSA – Experimental News Clipping Site

The Register: WhatsApp’s former security boss claims reporting infosec failings led to ousting

Sep 8, 2025

—

by

Source URL: https://www.theregister.com/2025/09/08/whatsapp_exsecurity_head_sues_company/ Source: The Register Title: WhatsApp’s former security boss claims reporting infosec failings led to ousting Feedly Summary: Meta shrugs off allegations of improper dismissal, ignoring privacy and security WhatsApp’s former head of security, Attaullah Baig, has filed a lawsuit against its parent company, Meta, alleging that the social media megalith retaliated against…

Slashdot: Whistle-Blower Sues Meta Over Claims of WhatsApp Security Flaws

Sep 8, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://yro.slashdot.org/story/25/09/08/1647240/whistle-blower-sues-meta-over-claims-of-whatsapp-security-flaws?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Whistle-Blower Sues Meta Over Claims of WhatsApp Security Flaws Feedly Summary: AI Summary and Description: Yes **Summary:** The lawsuit filed by the former head of security for WhatsApp against Meta highlights significant security and privacy concerns affecting billions of users. It brings to light allegations of negligence in addressing…

Bulletins: Vulnerability Summary for the Week of August 25, 2025

Sep 2, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.cisa.gov/news-events/bulletins/sb25-245 Source: Bulletins Title: Vulnerability Summary for the Week of August 25, 2025 Feedly Summary: High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info 1000projects–Online Project Report Submission and Evaluation System A vulnerability has been found in 1000projects Online Project Report Submission and Evaluation System 1.0. This issue affects some unknown…

The Register: WhatsApp warns of ‘attack against specific targeted users’

Sep 1, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/01/infosec_in_brief/ Source: The Register Title: WhatsApp warns of ‘attack against specific targeted users’ Feedly Summary: PLUS: Microsoft ends no-MFA Azure access; WorkDay attack diverts payments; FreePBX warns of CVSS 10 flaw; and more Infosec In brief A flaw in Meta’s WhatsApp app “may have been exploited in a sophisticated attack against specific targeted…

Slashdot: WhatsApp Fixes ‘Zero-Click’ Bug Used To Hack Apple Users With Spyware

Aug 29, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://it.slashdot.org/story/25/08/29/2020202/whatsapp-fixes-zero-click-bug-used-to-hack-apple-users-with-spyware?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: WhatsApp Fixes ‘Zero-Click’ Bug Used To Hack Apple Users With Spyware Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a recently patched security bug in WhatsApp that was exploited to perform a sophisticated, zero-click attack on iOS and Mac devices. This highlights critical vulnerabilities in popular…

The Register: Trend Micro offers weak workaround for already-exploited critical vuln in management console

Aug 10, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/08/10/infosec_in_brief/ Source: The Register Title: Trend Micro offers weak workaround for already-exploited critical vuln in management console Feedly Summary: PLUS: Crypto mixer founders plead guilty; Another French telco hacked; Meta fights WhatsApp scams; And more! Infosec In Brief A critical vulnerability in the on-prem version of Trend Micro’s Apex One endpoint security platform…

Cloud Blog: From Help Desk to Hypervisor: Defending Your VMware vSphere Estate from UNC3944

Jul 23, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/defending-vsphere-from-unc3944/ Source: Cloud Blog Title: From Help Desk to Hypervisor: Defending Your VMware vSphere Estate from UNC3944 Feedly Summary: Introduction In mid 2025, Google Threat Intelligence Group (GITG) identified a sophisticated and aggressive cyber campaign targeting multiple industries, including retail, airline, and insurance. This was the work of UNC3944, a financially motivated threat…

Slashdot: AMD Warns of New Meltdown, Spectre-like Bugs Affecting CPUs

Jul 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://it.slashdot.org/story/25/07/09/1835230/amd-warns-of-new-meltdown-spectre-like-bugs-affecting-cpus Source: Slashdot Title: AMD Warns of New Meltdown, Spectre-like Bugs Affecting CPUs Feedly Summary: AI Summary and Description: Yes Summary: AMD has identified a newly discovered side-channel attack, known as the Transient Scheduler Attack (TSA), which poses a potential information disclosure risk across a variety of its chip models. Although the vulnerabilities…

The Register: AMD warns of new Meltdown, Spectre-like bugs affecting CPUs

Jul 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/07/09/amd_tsa_side_channel/ Source: The Register Title: AMD warns of new Meltdown, Spectre-like bugs affecting CPUs Feedly Summary: Low-severity bugs but infosec pros claim they are a ‘critical’ overall threat – patch accordingly AMD is warning users of a newly discovered form of side-channel attack affecting a broad range of its chips that could lead…

Slashdot: Unless Users Take Action, Android Will Let Gemini Access Third-Party Apps

Jul 8, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://tech.slashdot.org/story/25/07/08/1255232/unless-users-take-action-android-will-let-gemini-access-third-party-apps?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Unless Users Take Action, Android Will Let Gemini Access Third-Party Apps Feedly Summary: AI Summary and Description: Yes Summary: Google’s modification to its Gemini AI engine allows it to interface with third-party applications, circumventing user privacy settings regarding app interactions. The adjustments raise concerns over data privacy, as user…

Tag: TSA