November 22, 2023 at 02:30PM Researchers, with support from Microsoft, have found ways to compromise three common fingerprint readers used in PCs. They were able to exploit the biometric security of Dell, Lenovo, and Microsoft laptops by taking advantage of the communication between the sensors and the devices. The manufacturers have since patched their chips. … Read more
November 22, 2023 at 02:09PM Security researchers discovered vulnerabilities in fingerprint sensors on Dell Inspiron, Lenovo ThinkPad, and Microsoft Surface Pro X laptops. The researchers were able to bypass Windows Hello fingerprint authentication using man-in-the-middle attacks. Microsoft’s Secure Device Connection Protocol (SDCP) was supposed to prevent these attacks, but it was not enabled on two … Read more
November 22, 2023 at 12:30PM Researchers at Aqua Security have discovered that hundreds of organizations and open-source projects are at risk due to the public exposure of Kubernetes configuration secrets. This vulnerability poses a severe supply chain attack threat as sensitive environments in the Software Development Life Cycle (SDLC) can be accessed. Aqua Security found … Read more
November 22, 2023 at 09:06AM Security researchers successfully bypassed fingerprint authentication on three popular laptops equipped with Windows Hello. Blackwing Intelligence and Microsoft’s MORSE conducted the research, targeting a Dell Inspiron 15, a Lenovo ThinkPad T14s, and a Microsoft Surface Pro X. The attacks required physical access to the devices and involved spoofing legitimate user … Read more
October 30, 2023 at 06:13PM A new method of using vulnerable websites to deliver malicious ads to search engine users has been discovered. The technique involves using Google’s “dynamic search ads” feature to pair targeted ads with searches. A compromised website was used to serve a fake software ad, overwhelming victims with malware. The researcher … Read more
October 16, 2023 at 10:36AM Australian researchers have developed an AI-driven cyber intrusion detection system to assist unmanned military robots in identifying man-in-the-middle (MitM) cyberattacks. The system, which uses deep learning convolutional neural networks (CNNs), aims to reduce vulnerabilities in the robot operating system (ROS) used by civilian and military robots. The algorithm achieved 99% … Read more