#TechNews

In Other News: FBI’s Ransomware Disruptions, Recall Delayed Again, CrowdStrike Responds to Bloomberg Article

by

November 1, 2024 at 08:46AM FBI conducted over 30 ransomware disruption operations this year. The Windows Recall has been postponed until December, and CrowdStrike has issued a response to a Bloomberg article. **Meeting Takeaways:** 1. **FBI Ransomware Operations**: The FBI has conducted over 30 disruption operations related to ransomware this year, highlighting their ongoing efforts … Read more

Hack Nintendo’s alarm clock to show cat pics? Let’s-a-go!

by

November 1, 2024 at 04:39AM Hacker GaryOderNichts successfully exploited a vulnerability in Nintendo’s Alarmo clock, allowing him to run custom code. Using insights from researcher Naomi Smith and tools like a Raspberry Pi, he extracted the device’s encryption key and created a payload displaying a cat picture. Nintendo has yet to respond to this hack. … Read more

Microsoft wants $30 if you want to delay Windows 11 switch

by

October 31, 2024 at 02:11PM Microsoft announced that Windows 10 home users can delay the transition to Windows 11 for an additional year by purchasing Extended Security Updates (ESU) for $30. Windows 10 support ends on October 14, 2025, but specialized versions will receive updates longer. Users are encouraged to check Windows 11 compatibility. ### … Read more

Opera Browser Fixes Big Security Hole That Could Have Exposed Your Information

by

October 30, 2024 at 10:03AM A recently patched security flaw in the Opera browser, identified as CrossBarking, allowed malicious extensions to access private APIs, facilitating actions like screenshot capture and account hijacking. Guardio Labs demonstrated the exploit using a benign extension. The incident highlights ongoing security concerns and the need for stricter monitoring of browser … Read more

Google Patches Critical Chrome Vulnerability Reported by Apple

by

October 30, 2024 at 05:32AM Google has addressed a critical vulnerability in Chrome (CVE-2024-10487), while Mozilla has resolved high-severity issues in Firefox. The updates ensure enhanced security for users of both browsers, following the report of the Chrome vulnerability by Apple. **Meeting Takeaways:** 1. **Patch Released for Chrome Vulnerability:** – Google has addressed CVE-2024-10487, classified … Read more

Synology, QNAP, TrueNAS Address Vulnerabilities Exploited at Pwn2Own Ireland

by

October 30, 2024 at 04:37AM Synology, QNAP, and TrueNAS are addressing vulnerabilities that were exploited at Pwn2Own Ireland 2024 by implementing patches and mitigation strategies. **Meeting Takeaways:** 1. **Recent Vulnerabilities**: Synology, QNAP, and TrueNAS have acknowledged vulnerabilities that were exploited during the Pwn2Own Ireland 2024 event. 2. **Action Taken**: Each company has begun implementing patches … Read more

Fitness App Strava Gives Away Location of Biden, Trump and other Leaders, French Newspaper Says

by

October 29, 2024 at 09:02AM Le Monde reports that U.S. Secret Service agents have been using the Strava fitness app, even after recent assassination attempts on Trump, raising concerns about the app revealing locations of political leaders like Biden and Trump. **Meeting Notes Takeaways:** 1. **Use of Strava by Secret Service:** It was noted that … Read more

First ChatGPT Jailbreak Disclosed via Mozilla’s New AI Bug Bounty Program

by

October 29, 2024 at 05:12AM A new ChatGPT jailbreak has been revealed through Mozilla’s newly launched 0Din gen-AI bug bounty program, as reported by SecurityWeek. **Meeting Notes Takeaways:** 1. **New Development**: A new jailbreak for ChatGPT has been disclosed. 2. **Source**: The information was shared through Mozilla’s 0Din gen-AI bug bounty program. 3. **Publication**: The … Read more

New Research Reveals Spectre Vulnerability Persists in Latest AMD and Intel Processors

by

October 29, 2024 at 02:33AM Research from ETH Zürich reveals that AMD and Intel processors remain vulnerable to speculative execution attacks, despite previous mitigations. A microcode bug allows attackers to bypass the Indirect Branch Predictor Barrier (IBPB), enabling unauthorized memory leaks. Intel has issued patches, while AMD tracks its variant of the vulnerability. **Meeting Takeaways … Read more

About the security content of tvOS 18.1 – Apple Support

by

October 28, 2024 at 12:06PM Apple released an update for tvOS 18.1 addressing multiple security vulnerabilities, including path handling, symlink issues, memory corruption, and information disclosure. These vulnerabilities could allow unauthorized access to sensitive data, cause unexpected crashes, or manipulate protected system files. Updates are available for Apple TV HD and Apple TV 4K models. … Read more