A now-patched vulnerability could have enabled threat actors to remotely control Subaru cars This article has been indexed from www.infosecurity-magazine.com Read the original article: Subaru Bug Enabled Remote Vehicle Tracking and Hijacking
Category: EN
Hackers stole sensitive information belonging to 62 million kids and almost 10 million teachers
Hackers stole personal information belonging to tens of millions of kids from PowerSchool in a data breach. PowerSchool is a California-based company claiming to be… The post Hackers stole sensitive information belonging to 62 million kids and almost 10 million…
Meta To Spend Up To $65bn On AI This Year
Meta plans to spend up to $65bn on AI infrastructure this year, as it faces competition from rival companies and ‘Stargate’ initiative This article has been indexed from Silicon UK Read the original article: Meta To Spend Up To $65bn…
Banks Look To Sell Twitter Takeover Debt
US banks look to sell significant portion of the debt that financed 2022 acquisition of Twitter, now X, amidst Musk’s growing political clout This article has been indexed from Silicon UK Read the original article: Banks Look To Sell Twitter…
Silicon UK In Focus Podcast: Disruptive Trends Shaping Our Future
Explore disruptive trends shaping our future with Sally Epstein, Chief Innovation Officer at Cambridge Consultants, in the latest Silicon UK In Focus Podcast. Learn about emerging technologies, innovation strategies, and how to thrive in a rapidly changing world. This article…
Apache Solr For Windows instances Vulnerability Allows Arbitrary Path Write-Access
A critical security vulnerability (CVE-2024-52012) affecting Apache Solr instances on Windows has been identified, allowing attackers to gain arbitrary file path write access using the “configset upload” API. The flaw, categorized as a relative path traversal vulnerability, poses a moderate…
LockBit Ransomware: 11-Day Timeline from Initial Compromise to Deployment
A well-coordinated cyber intrusion, spanning 11 days, culminated in the deployment of LockBit ransomware across a corporate environment. The attack, which began with the execution of a malicious file posing as a Windows Media Configuration Utility, displayed a sophisticated playbook…
Weaponised XWorm RAT Builder Attacking Script Kiddies To Hack 18,000 Devices
A recent cybersecurity attack involving a Trojanized version of the XWorm Remote Access Trojan (RAT) builder has compromised over 18,000 devices worldwide. This sophisticated malware, primarily distributed via GitHub repositories, Telegram channels, and other platforms, has targeted cybersecurity novices, also…
Change Healthcare Breach Almost Doubles in Size to 190 Million Victims
Change Healthcare has claimed 190 million customers were affected by a mega-breach last year This article has been indexed from www.infosecurity-magazine.com Read the original article: Change Healthcare Breach Almost Doubles in Size to 190 Million Victims
TalkTalk investigating data breach after hacker claims theft of customer data
A hacker claims to be selling the data of 18.8 million TalkTalk customers, but the telecoms giant says this figure is ‘significantly overstated’ © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security…
Attackers allegedly stole $69 million from cryptocurrency platform Phemex
Crooks stole at least $69 million from Singapore-based cryptocurrency platform Phemex in an alleged cyberattack. Singapore-based crypto platform Phemex paused operations after a cyberattack that resulted in the theft of $69M. Phemex CEO Federico Variola stated they are restoring withdrawals and…
British Museum says ex-contractor ‘shut down’ IT systems, wreaked havoc
Former freelancer cuffed a week after being dismissed by UK’s top visitor attraction The British Museum was forced to temporarily close some galleries and exhibitions this weekend after a disgruntled former tech contractor went rogue and shuttered some onsite IT…
ByteDance In Talks With US Over Non-Sale Options For TikTok
ByteDance board member William Ford expresses optimism ByteDance can find non-sale option to keep TikTok in US in compliance with law This article has been indexed from Silicon UK Read the original article: ByteDance In Talks With US Over Non-Sale…
Crypto Firms Sign Up To Trump-Linked Lobby Group
Several cryptocurrency companies, including the companies behind Kraken and Blockchain.com as well as Ripple Labs, are amongst the dozens of enterprises and wealthy individuals who have retained Ballard Partners, a lobbying firm linked to US president Donald Trump, since his…
New SCAVY Framework to Detect Memory Corruption Privilege Escalation in Linux Kernel
A breakthrough framework named SCAVY has been introduced to proactively detect memory corruption targets that could potentially lead to privilege escalation in the Linux kernel. Presented at the prestigious USENIX Security Symposium in August 2024, the framework aims to address long-standing gaps…
Windows Charset Conversion Feature Exploited to Execute Remote Code
Security researchers have uncovered a critical vulnerability in Windows stemming from its “Best-Fit” character conversion feature, which has been exploited to execute remote code. This newly identified attack surface, dubbed “WorstFit,” leverages certain features of Windows’ internal character encoding system…
Critical Fleet Server Vulnerability Exposes Sensitive Information
A critical vulnerability (CVE-2024-52975) has been identified in Elastic’s Fleet Server, posing a severe risk of sensitive information exposure. The flaw, affecting Fleet Server versions 8.13.0 through 8.15.0, allows sensitive data to be logged at the INFO and ERROR log…
GamaCopy Mimics Gamaredon Tactics in Cyber Espionage Targeting Russian Entities
A previously unknown threat actor has been observed copying the tradecraft associated with the Kremlin-aligned Gamaredon hacking group in its cyber attacks targeting Russian-speaking entities. The campaign has been attributed to a threat cluster dubbed GamaCopy, which is assessed to…
When Hackers Get Hacked: Cyber Security Today for January 27, 2025
Cybersecurity Recap: Major Data Breaches, Transparency Issues, and a Twist on Script Kiddies In this episode of Cybersecurity Today, host Jim Love covers various major cybersecurity incidents and developments. Mozilla criticizes the auto industry’s data privacy practices following a Volkswagen…
Trump Executive Order Sets Out Pro-Crypto Policy Shift
US president Donald Trump signs executive order initiating wide-ranging shift to cryptocurrency-friendly policies This article has been indexed from Silicon UK Read the original article: Trump Executive Order Sets Out Pro-Crypto Policy Shift