Tag: vigilance
-
The Register: SafePay ransomware gang claims Microlise attack that disrupted prison van tracking
Source URL: https://www.theregister.com/2024/11/22/safepay_microlise/ Source: The Register Title: SafePay ransomware gang claims Microlise attack that disrupted prison van tracking Feedly Summary: Fledgling band of crooks says it stole 1.2 TB of data The new SafePay ransomware gang has claimed responsibility for the attack on UK telematics biz Microlise, giving the company less than 24 hours to…
-
Hacker News: Listen to the whispers: web timing attacks that work
Source URL: https://portswigger.net/research/listen-to-the-whispers-web-timing-attacks-that-actually-work Source: Hacker News Title: Listen to the whispers: web timing attacks that work Feedly Summary: Comments AI Summary and Description: Yes **Summary:** This text introduces novel web timing attack techniques capable of breaching server security by exposing hidden vulnerabilities, misconfigurations, and attack surfaces more effectively than previous methods. It emphasizes the practical…
-
Simon Willison’s Weblog: Quoting Steven Johnson
Source URL: https://simonwillison.net/2024/Nov/21/steven-johnson/#atom-everything Source: Simon Willison’s Weblog Title: Quoting Steven Johnson Feedly Summary: When we started working on what became NotebookLM in the summer of 2022, we could fit about 1,500 words in the context window. Now we can fit up to 1.5 million words. (And using various other tricks, effectively fit 25 million words.)…
-
The Register: Chinese cyberspies, Musk’s Beijing ties, labelled ‘real risk’ to US security by senator
Source URL: https://www.theregister.com/2024/11/20/musk_chinese_cyberspies/ Source: The Register Title: Chinese cyberspies, Musk’s Beijing ties, labelled ‘real risk’ to US security by senator Feedly Summary: Meet Liminal Panda, which prowls telecom networks in South Asia and Africa A senior US senator has warned that American tech companies’ activities in China represent a national security risk, in a hearing…
-
Slashdot: Apple Says Mac Users Targeted in Zero-Day Cyberattacks
Source URL: https://it.slashdot.org/story/24/11/20/181206/apple-says-mac-users-targeted-in-zero-day-cyberattacks?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Apple Says Mac Users Targeted in Zero-Day Cyberattacks Feedly Summary: AI Summary and Description: Yes Summary: Apple’s recent security updates address critical zero-day vulnerabilities affecting Intel-based Mac systems that were under active attack, highlighting the importance of timely patch management and awareness of state-sponsored cyber threats. Detailed Description: Apple’s…
-
Hacker News: We assume damage to Baltic Sea cables was sabotage, German Defence minister
Source URL: https://www.theguardian.com/world/2024/nov/19/baltic-sea-cables-damage-sabotage-german-minister Source: Hacker News Title: We assume damage to Baltic Sea cables was sabotage, German Defence minister Feedly Summary: Comments AI Summary and Description: Yes Summary: The incident involving the sabotage of undersea fibre-optic cables in the Baltic Sea has raised significant concerns about the security of critical infrastructure in Europe. The implications…
-
The Register: Crook breaks into AI biz, points $250K wire payment at their own account
Source URL: https://www.theregister.com/2024/11/19/ilearningengines_bec_scam/ Source: The Register Title: Crook breaks into AI biz, points $250K wire payment at their own account Feedly Summary: Fastidious attacker then tidied up email trail behind them A Maryland AI company has confirmed to the Securities and Exchange Commission (SEC) that it lost $250,000 to a misdirected wire payment.… AI Summary…
-
Schneier on Security: Most of 2023’s Top Exploited Vulnerabilities Were Zero-Days
Source URL: https://www.schneier.com/blog/archives/2024/11/most-of-2023s-top-exploited-vulnerabilities-were-zero-days.html Source: Schneier on Security Title: Most of 2023’s Top Exploited Vulnerabilities Were Zero-Days Feedly Summary: Zero-day vulnerabilities are more commonly used, according to the Five Eyes: Key Findings In 2023, malicious cyber actors exploited more zero-day vulnerabilities to compromise enterprise networks compared to 2022, allowing them to conduct cyber operations against higher-priority…