Sat.Sep 28, 2024

article thumbnail

Weekly Update 419

Troy Hunt

It's not a green screen! It's just a weird a weird hotel room in Pittsburgh, but it did make for a cool backdrop for this week's video. We were there visiting our FBI friends after coming from Washington DC and a visit to CISA, the "America's Cyber Defence Agency" This week, I'm talking about those visits, some really cool new Cloudflare features, and our ongoing effort to push more and more of HIBP's data to Cloudflare's edges.

Passwords 211
article thumbnail

Crypto Scam App Disguised as WalletConnect Steals $70K in Five-Month Campaign

The Hacker News

Cybersecurity researchers have discovered a malicious Android app on the Google Play Store that enabled the threat actors behind it to steal approximately $70,000 in cryptocurrency from victims over a period of nearly five months. The dodgy app, identified by Check Point, masqueraded as the legitimate WalletConnect open-source protocol to trick unsuspecting users into downloading it.

Scams 141
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Irish Data Protection Commission fined Meta €91 million for storing passwords in readable format

Security Affairs

The Irish Data Protection Commission (DPC) fined Meta €91 million for storing the passwords of hundreds of millions of users in plaintext. The Irish Data Protection Commission (DPC) has fined Meta Platforms Ireland Limited (MPIL) €91 million ($100 million) for storing the passwords of hundreds of millions of users in plaintext, violating data protection regulations.

Passwords 138
article thumbnail

This 13-inch laptop I recommend for work travel is not a Dell XPS or MacBook

Zero Day

Lenovo's ThinkBook 13x Gen 4 has a lightweight and durable form factor and comes with a Magic Bay accessory that I can't stop thinking about.

98
article thumbnail

Prevent Data Breaches With Zero-Trust Enterprise Password Management

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

article thumbnail

Bypassing Security: DCRat Deployed via HTML Smuggling

Penetration Testing

A recent report from the Netskope team reveals that the modular remote access trojan (RAT), DCRat (also known as Dark Crystal RAT), is being deployed using a relatively new and... The post Bypassing Security: DCRat Deployed via HTML Smuggling appeared first on Cybersecurity News.

article thumbnail

The Samsung phone that I recommend to most people just got unseated by a surprise pick

Zero Day

The new Samsung Galaxy S24 FE undercuts the standard Galaxy S24 but has mostly the same features -- including the main camera.

98

More Trending

article thumbnail

Join Sam's Club for $15 - the lowest price we've seen. Here's how

Zero Day

This deal gets you an annual Sam's Club membership for 70% off -- but hurry, it won't last long.

75
article thumbnail

Over 300,000! GorillaBot: The New King of DDoS Attacks

Security Boulevard

Overview In September 2024, NSFOCUS Global Threat Hunting System monitored a new botnet family calling itself Gorilla Botnet entering an unusually active state. Between September 4 and September 27, it issued over 300,000 attack commands, with a shocking attack density. During this active period, Gorilla Botnet targeted over 100 countries, with China and the U.S. […] The post Over 300,000!

DDOS 69
article thumbnail

Meta's new $299 Quest 3S is the VR headset most people should buy this holiday season

Zero Day

The Meta Quest 3S is a cheaper alternative to the flagship Quest 3 model and will have the ability to seamlessly connect to Windows 11 computers.

75
article thumbnail

CUPS: Unraveling a Critical Vulnerability Chain in Unix Printing Systems

Security Boulevard

A series of critical vulnerabilities has been uncovered in the Common Unix Printing System (CUPS), specifically in the The post CUPS: Unraveling a Critical Vulnerability Chain in Unix Printing Systems appeared first on ARMO. The post CUPS: Unraveling a Critical Vulnerability Chain in Unix Printing Systems appeared first on Security Boulevard.

64
article thumbnail

Optimizing The Modern Developer Experience with Coder

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

article thumbnail

5 biggest announcements at Meta Connect this week (including an AR glasses prototype)

Zero Day

Meta's new VR headset undercuts the Apple Vision Pro's price even more than the last. The company also showcased its most advanced AR glasses yet.

75
article thumbnail

USENIX NSDI ’24 – SwiftPaxos: Fast Geo-Replicated State Machines

Security Boulevard

Authors/Presenters:Fedor Ryabinin, Alexey Gotsman, Pierre Sutra Our sincere thanks to USENIX , and the Presenters & Authors for publishing their superb 21st USENIX Symposium on Networked Systems Design and Implementation (NSDI '24) content, placing the organizations enduring commitment to Open Access front and center. Originating from the conference’s events situated at the Hyatt Regency Santa Clara ; and via the organizations YouTube channel.

64
article thumbnail

Sign up for Costco and get a free $20 gift card right now. Here's how

Zero Day

Don't miss this deal to buy your own Costco membership and get a free $20 gift card, effectively cutting the price to $45 for the year. (I bought one and highly recommend it.

75
article thumbnail

Fake WalletConnect App on Google Play Drains $70K in Crypto

Penetration Testing

In a recent investigation by Check Point Research (CPR), a sophisticated crypto scam was uncovered, leveraging a fake app impersonating the popular Web3 protocol, WalletConnect, to drain users’ cryptocurrency wallets.... The post Fake WalletConnect App on Google Play Drains $70K in Crypto appeared first on Cybersecurity News.

article thumbnail

The Tumultuous IT Landscape Is Making Hiring More Difficult

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

article thumbnail

Digital twins are optimizing supply chains and more. Here's why enterprises should care

Zero Day

Virtual modeling, analytics, and the Internet of Things have created a new way for businesses to use data to improve their operations: the digital twin.

article thumbnail

How to use TheHarvester to Get Email , Domain and IP Quickly | Quick Guide

Hacker's King

In this article, we will learn how to easily find any company's email, domain, and IP address using the OSINT tool TheHarvester. OSINT (Open Source Intelligence) tools allow for the efficient gathering and analysis of publicly available data used by government agencies and private organizations to analyze market trends, brand positioning, and more. These tools have advanced from traditional media to incorporate technologies like web scraping, social media analytics, geospatial intelligence, and

article thumbnail

One of the best cheap Android phones I've tested is not a Samsung or Motorola

Zero Day

The Oukitel C50 has a large 6.8-inch, 90Hz display, and ample battery life, proving that cheap phones are getting good.

75
article thumbnail

The US Could Finally Ban Inane Forced Password Changes

WIRED Threat Level

Plus: The US Justice Department indicts three Iranians over Trump campaign hack, EU regulators fine Meta $100 million for a password security lapse, and the Tor Project enters a new phase.

Passwords 107
article thumbnail

The Cloud Development Environment Adoption Report

Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.

article thumbnail

One of the most immersive speakers I've tested is not made by Sonos or JBL

Zero Day

If you need sheer power from a Bluetooth speaker to fill large spaces with amazing sound, you can't beat the Fender Rockstar Cross.

74
article thumbnail

I test robot vacuums for a living, and this Ecovacs performs as well as models twice its price

Zero Day

Ecovacs just launched the Deebot N30 Omni, a robot vacuum with high-end features that you'd typically pay more for.

52
article thumbnail

Get Microsoft Office 2019 for Windows or Mac for $25

Zero Day

This deal gets you a lifetime license to Microsoft Office 2019 for Windows or Mac and access to Microsoft Word, Excel, PowerPoint, and more for 89% off.

40