Nearly all Chinese keyboard apps have encryption flaws, exposing millions of users to keylogging
iOS and Huawei apps found to be safe, but others could allow passive snooping
Cybercriminals are using developing nations as test beds for ransomware attacks
Sandboxing their techniques
GPT-4 can exploit zero-day security vulnerabilities all by itself, a new study finds
A hot potato: GPT-4 stands as the newest multimodal large language model (LLM) crafted by OpenAI. This foundational model, currently accessible to customers as part of the paid ChatGPT Plus line, exhibits notable prowess in identifying security vulnerabilities without requiring external human assistance.
Hackers attempted to trick LastPass employee with cloned voice of CEO
Incident disclosed to raise awareness on deepfake-based security threats
Microsoft warns that Russia's online influence campaigns targeting US elections have picked up pace
Russia is trying to undermine US support for Ukraine and NATO
Russia-backed hacking group suspected of attack on US water system
Sandworm also created NotPetya
Bad actors are tempting T-Mobile employees with cash rewards to perform SIM swaps
Numbers said to be sourced from a T-Mobile employee directory
The DiskMantler can take apart a hard drive in as little as 8 seconds by vigorously shaking it
Once the disassembly process is complete, it spits out the usable components
Apple warns users in 92 countries of mercenary spyware attacks
No word on who might be behind the attacks
Microsoft left a server containing employee credentials exposed to the internet for a month
Admins waited 28 days before securing the server with a password
LG TV owners should update their firmware, webOS vulnerability found in a few models
Security bug could grant root access on TVs running webOS versions 4 through 7
New HTTP/2 vulnerability leaves servers in danger of devastating DoS attacks, even from a single TCP connection
Affected server administrators are urged to take immediate action
Google's Find My Device network could be rolling out very soon
Beta users have received the update, and an email from Google suggests a larger rollout next week
Former White House CIO warns the tech industry should prepare for a TikTok ban
China could retaliate by placing demands on Apple
Google sues alleged crypto scammers who uploaded fraudulent apps to the Play Store
An unprecedent move by Google
Government review criticizes Microsoft for security lapses in "preventable" Exchange hack
An incident that "should never have occurred"
Developer delves into Denuvo DRM to run Hogwarts Legacy on a secondary PC
Does Denuvo really deserve all the hate it gets from gamers?
Microsoft reveals how much Windows 10 Extended Security Updates will cost
The Extended Security Updates program was first introduced for Windows 7
House of Representatives bans the use of Copilot over security concerns
More bad news for Microsoft
AT&T confirms data leak affecting 73 million customers - after spending two weeks denying it
Four-digit passcodes have been reset for affected customers
Linux could have been brought down by backdoor found in widely used utility
Why it matters: By happenstance Microsoft researcher Andres Freund found malicious code that could break sshd authentication. If it hadn't been discovered it could have posed a grave threat to Linux. The open source community has reacted to the incident, acknowledging the fortuitous nature of the discovery and how it was fortunately caught early before it could pose a significant risk to the broader Linux community.
Activision Blizzard investigates hacking campaign linked to cheat software
Cheating isn't worth it at this price
New variant of "TheMoon" malware enslaves thousands of insecure Asus routers into a malicious proxy
Cybercriminals have partnered in a novel botnet-as-a-service operation
Apple "Find My" app led a Missouri SWAT team to raid an innocent family's home, lawsuit pending
"Find My is not that accurate," says family lawyer