Sidebar
Cybersecurity
> Infection corrals devices running AOSP-based firmware into a botnet.
> Fake Python job opportunities used to attack programmers
> The Vision Pro uses 3D avatars on calls and for streaming. These researchers used eye tracking to work out the passwords and PINs people typed with their avatars. Archived version: https://web.archive.org/web/20240912100207/https://www.wired.com/story/apple-vision-pro-persona-eye-tracking-spy-typing/
> Two algorithms added so far, two more planned in the coming months.
> Microsoft Corp. today released updates to fix at least 79 security vulnerabilities in its Windows operating systems and related software, including multiple flaws that are already showing up in active attacks. Microsoft also corrected a critical bug that has caused some Windows 10 PCs to remain dangerously unpatched against actively exploited vulnerabilities for several months this year.
> The funds from Germany’s Sovereign Tech Fund will be used to integrate security features such as zero trust capabilities and tools for software bill of materials.
> Optical Character Recognition converts passwords shown in images to machine-readable text. McAfee blog: https://www.mcafee.com/blogs/other-blogs/mcafee-labs/new-android-spyagent-campaign-steals-crypto-credentials-via-image-recognition/
> Most serious vulnerabilities carry severity ratings of 9.8 and 8.1 out of a possible 10.