Sidebar

Security

"Initials" by "Florian Körner", licensed under "CC0 1.0". / Remix of the original. - Created with dicebear.comInitialsFlorian Körnerhttps://github.com/dicebear/dicebearSE
Security On 8 months ago 100%
Microsoft network breached through password-spraying by Russian-state hackers arstechnica.com

Senior execs' emails accessed in network breach that wasn't caught for 2 months.

2
0
"Initials" by "Florian Körner", licensed under "CC0 1.0". / Remix of the original. - Created with dicebear.comInitialsFlorian Körnerhttps://github.com/dicebear/dicebearSE
Security jucktion 9 months ago 100%
Terrapin Attack - Attack Discovered Against SSH https://terrapin-attack.com/

Terrapin is a prefix truncation attack targeting the SSH protocol. More precisely, Terrapin breaks the integrity of SSH's secure channel. By carefully adjusting the sequence numbers during the handshake, an attacker can remove an arbitrary amount of messages sent by the client or server at the beginning of the secure channel without the client or server noticing it.

3
0
"Initials" by "Florian Körner", licensed under "CC0 1.0". / Remix of the original. - Created with dicebear.comInitialsFlorian Körnerhttps://github.com/dicebear/dicebearSE
Security On 9 months ago 100%
SMTP Smuggling Allows Spoofed Emails to Bypass Authentication Protocols www.securityweek.com

A new attack technique named SMTP Smuggling can allow malicious actors to send out spoofed emails that bypass authentication mechanisms.

3
1
"Initials" by "Florian Körner", licensed under "CC0 1.0". / Remix of the original. - Created with dicebear.comInitialsFlorian Körnerhttps://github.com/dicebear/dicebearSE
Security On 10 months ago 100%
Google researchers report critical zero-days in Chrome and all Apple OSes arstechnica.com

Discoveries made by Google's Threat Analysis Group, which tracks nation-state hacking.

2
0
"Initials" by "Florian Körner", licensed under "CC0 1.0". / Remix of the original. - Created with dicebear.comInitialsFlorian Körnerhttps://github.com/dicebear/dicebearSE
Security On 10 months ago 100%
In a first, cryptographic keys protecting SSH connections stolen in new attack arstechnica.com

An error as small as a single flipped memory bit is all it takes to expose a private key.

2
0
"Initials" by "Florian Körner", licensed under "CC0 1.0". / Remix of the original. - Created with dicebear.comInitialsFlorian Körnerhttps://github.com/dicebear/dicebearSE
Security On 11 months ago 100%
Hackers Accessed 632,000 Email Addresses at US Justice, Defense Departments www.bloomberg.com

The eight-page report said hackers were able to obtain access to the data by exploiting vulnerability in the MOVEit file transfer program

2
0
"Initials" by "Florian Körner", licensed under "CC0 1.0". / Remix of the original. - Created with dicebear.comInitialsFlorian Körnerhttps://github.com/dicebear/dicebearSE
Security On 11 months ago 100%
Hackers can force iOS and macOS browsers to divulge passwords and much more arstechnica.com

iLeakage is practical and requires minimal resources. A patch isn't (yet) available.

2
0
"Initials" by "Florian Körner", licensed under "CC0 1.0". / Remix of the original. - Created with dicebear.comInitialsFlorian Körnerhttps://github.com/dicebear/dicebearSE
Security On 11 months ago 100%
Samsung Galaxy S23 hacked twice on first day of Pwn2Own Toronto www.bleepingcomputer.com

Security researchers hacked the Samsung Galaxy S23 twice during the first day of the consumer-focused Pwn2Own 2023 hacking contest in Toronto, Canada.

2
0