Recent Security News
-
AT&T says leaked data of 70 million people is not from its systems
March 17, 2024 at 07:24PM AT&T denied that the leaked data impacting 71 million people originated from its systems, following a hacker’s attempt to sell the data. Another hacker later leaked the data for free, containing personal information like names, addresses, and encrypted social security numbers. The source of the data remains a mystery, posing…
-
Microsoft again bothers Chrome users with Bing popup ads in Windows
March 17, 2024 at 01:08PM Microsoft is promoting Bing and the GPT-4 Bing Chat platform to Google Chrome users through popup desktop ads on Windows 10 and Windows 11. Although some users initially suspected malware due to the ad quality, Microsoft confirmed the legitimacy as a one-time notification offering the choice to set Bing as…
-
New acoustic attack determines keystrokes from typing patterns
March 17, 2024 at 10:25AM Researchers have developed a new acoustic side-channel attack on keyboards, capable of deducing user input based on typing patterns, even in noisy environments. The method achieves a 43% average success rate and doesn’t require controlled recording conditions. However, it may be less effective for those with inconsistent typing patterns or…
-
In the rush to build AI apps, please, please don’t leave security behind
March 17, 2024 at 07:08AM AI developers and data scientists are urged to be mindful of security and supply-chain attacks amidst the relentless progress in AI technology. With a growing threat of malware in models and libraries, cybersecurity and AI startups are emerging to address the vulnerability. Ensuring supply-chain security in the AI community is…
-
Hackers exploit Aiohttp bug to find vulnerable networks
March 16, 2024 at 04:48PM ShadowSyndicate, a ransomware actor, has targeted servers vulnerable to CVE-2024-23334 in the aiohttp Python library. The vulnerability allows remote attackers to access files on affected servers. Exploitation attempts were observed, originating from five IP addresses connected to ShadowSyndicate. Cyble’s data shows about 44,170 exposed aiohttp instances globally, making the extent…