Security
US moves to ban Chinese robots competing with Tesla, cites spying fears
The US government could soon be banned from purchasing or using humanoid robots made by Chinese companies under legislation introduced Thursday by two senior senators.
Read more about US moves to ban Chinese robots competing with Tesla, cites spying fears
Critical TP-Link Archer NX flaws let hackers bypass login and upload new firmware
TP-Link has disclosed critical vulnerabilities affecting its TP-Link Archer NX series routers, which are highly popular in Europe, and is urging users to update their firmware. Attackers can bypass authentication and even upload new firmware.
Read more about Critical TP-Link Archer NX flaws let hackers bypass login and upload new firmware
Ajax FC data breach exposes 300,000 fans, hacker steals tickets an stadium ban details
Ajax, one of the most popular soccer clubs in the Netherlands, recently experienced a data breach that exposed the personally identifiable information (PII) of more than 300,000 fans.
Read more about Ajax FC data breach exposes 300,000 fans, hacker steals tickets an stadium ban details
Families urged to come up with a “safe word” as deepfake scams skyrocket
With one in four Americans reporting that they’ve received a deepfake phone call in the past year, cybersecurity experts are urging families to set up a “safe word” to avoid being scammed.
Read more about Families urged to come up with a “safe word” as deepfake scams skyrocket
Sony's and Paramount's favourite English app puts 5M users at risk of deepfakes
Mastering a new language with AI apps might put you at risk of deepfakes. Cybernews researchers have just discovered that a premier Japanese learning app left the voices of its 5 million users exposed to the open web.
Read more about Sony's and Paramount's favourite English app puts 5M users at risk of deepfakes
Time travel for hackers: how clock spoofing threatens oil, gas, and industrial systems in Iran conflict
More than 1000 ships have been disrupted by GPS interference in the Gulf – but navigation is only part of the story. According to an oil and gas security expert, the real danger lies with manipulating time itself.
Read more about Time travel for hackers: how clock spoofing threatens oil, gas, and industrial systems in Iran conflict
Critical Python supply chain compromise: how library used by millions of AI developers got infected with malware
LiteLLM, a massively popular Python library used by AI developers, was compromised to deliver a mass credential harvesting malware, sending shockwaves across the industry. The “software horror” spread like an infection to other projects through dependencies. A clearer picture has emerged of how the unprecedented hack unfolded.
Read more about Critical Python supply chain compromise: how library used by millions of AI developers got infected with malware
Hackers threaten Ameriprise Financial with 200GB data leak
The ShinyHunters hacker group has identified Ameriprise Financial as its latest victim, threatening to release hundreds of gigabytes of the firm's data if it doesn’t pay a ransom.
Read more about Hackers threaten Ameriprise Financial with 200GB data leak
School software serving 11M students hacked, ShinyHunters claims attack
Infinite Campus, a widely used supplier of a popular Student Information System (SIS), is the latest victim of ShinyHunters. The ransomware extortion group is threatening to publicly reveal all stolen data.
Read more about School software serving 11M students hacked, ShinyHunters claims attack
Hackers smooth-talking their way into corporate networks as voice phishing surges
Exploits remain the most common initial infection vector for businesses and organizations. Voice phishing has become the second-most observed attack vector.
Read more about Hackers smooth-talking their way into corporate networks as voice phishing surges
Dermatology services giant operating in 17 states exposes data of 3.1 million
QualDerm, a US dermatology management services provider supporting more than 150 practices across 17 states, is notifying 3.1 million people after a data breach exposed medical and insurance data.
Read more about Dermatology services giant operating in 17 states exposes data of 3.1 million
New data and US watchdog rank routers as “the most hackable device”
As the FCC moves to block foreign-made routers, new research finds they have, on average, 32 flaws per device, compared to 14 for computers.
Read more about New data and US watchdog rank routers as “the most hackable device”
Russia is building its own internet: first 16 satellites are already up
The Russian government is taking aim at Starlink by launching 16 broadband internet satellites into orbit. It’s the early stage of project Rassvet – Russia’s plan to expand to a fully sovereign satellite internet system.
Read more about Russia is building its own internet: first 16 satellites are already up
Scammers run circles around sideloading restrictions with fake app stores
Researchers are warning of a nasty new type of scam: victims see a normal Google Play or Apple App Store, where the install button works, an app icon appears on the home screen without any warnings, and it functions as normal. But the “fake app” is actually a special bookmark (Progressive Web App) to a fraudulent website.
Read more about Scammers run circles around sideloading restrictions with fake app stores
US jails Russian national linked to ransomware crew behind bold breach of Cisco systems
A US court has sentenced a Russian citizen, Aleksei Volkov, to more than six years in prison for helping major cyber gangs, including the Yanluowang ransomware group behind the 2022 Cisco breach, to carry out numerous attacks against American companies and organizations.
Read more about US jails Russian national linked to ransomware crew behind bold breach of Cisco systems
OVHcloud founder denies hacker claims of massive data breach
Attackers claim they’ve penetrated the parent accounts of OVHcloud, a major French cloud computing company.
Read more about OVHcloud founder denies hacker claims of massive data breach
HackerOne demands clarity after delayed breach warning from Navia
HackerOne has been affected by a data breach on its provider, Navia. It is now publicly questioning not just the exposure but also the delay in notification.
Read more about HackerOne demands clarity after delayed breach warning from Navia
Dangerous iPhone hack code now leaked on GitHub – users urged to patch now
A dangerous iPhone exploit chain tied to DarkSword has now reportedly leaked onto GitHub, raising fresh concerns that attackers could more easily target people still using older Apple devices.
Read more about Dangerous iPhone hack code now leaked on GitHub – users urged to patch now
FCC blocks foreign-made routers from US market over national security fears
The FCC on Monday expanded its national security crackdown on Chinese-linked technology, adding all foreign-made consumer-grade routers to its “Covered List,” effectively blocking new models from entering the US market.
Read more about FCC blocks foreign-made routers from US market over national security fears
Sitting ducks: over 500K outdated Windows web servers are exposed online
Security researchers have mapped over half a million publicly exposed Windows web servers running end-of-life Internet Information Services (IIS) software. Nearly half of the servers outlasted even Microsoft’s last resort – the paid Extended Security Updates (ESU) program.
Read more about Sitting ducks: over 500K outdated Windows web servers are exposed online
