Tag Archives: Biz & IT

Microsoft discovers new lightweight backdoor that steals cryptocurrency

Microsoft says it has detected new self-propagating malware that spreads through USB drives in search of cryptocurrency credentials, which it then sends to attacker-controlled servers. The company named the worm Crypto Clipper because it monitors the contents of device clipboards for patterns consistent with wallet addresses or seed phrases. When found, the malware also takes… Read More: Microsoft discovers new lightweight backdoor that steals cryptocurrency »

Apple patches high-severity eavesdropping vulnerability in Beats Studio Buds

Security firm Sentinel One has a deeper dive into CVE-2025-20701 here. Heinze and Steinmetz said last year that the full chain of attacks gave attackers the ability to do other malicious things, including retrieving call history and contacts, and even calling arbitrary numbers. Many of those capabilities are dependent on the specific devices being paired,… Read More: Apple patches high-severity eavesdropping vulnerability in Beats Studio Buds »

Before SpaceX IPO, investors in China secretly acquired stakes

Some of the SpaceX investors on Kahlon’s ledger are easy to identify: the Indian politician Abhishek Singhvi; Betsy DeVos, the former US secretary of education; a British Virgin Islands company owned by Indonesian billionaires. But others on the list are shell companies whose ultimate owners remain hidden. One such company is a Delaware LLC called… Read More: Before SpaceX IPO, investors in China secretly acquired stakes »

Massive breach spills credentials for thousands of sensitive networks

Hudson Rock said the attackers went on to “actively intercept SSL VPN authentication hashes and crack them using a massive, dedicated 45-GPU cluster managed via Hashtopolis.” From there, they used the GPU cluster to crack the hashes, meaning to try massive combinations of plain-text passwords until they found the right one. These passwords allowed the… Read More: Massive breach spills credentials for thousands of sensitive networks »

Tesco moving 40,000 server workloads off VMware amid Broadcom’s “abusive conduct”

Tesco is also dealing with migration challenges related to data security because its new, unnamed virtualization software is incompatible with the Veeam and Zerto products it uses. “Manifestly unfair and excessive” price hike Tesco initially requested at least 100 million pounds (about $133.6 million) in damages each from Broadcom, VMware, and reseller Computacenter, plus interest.… Read More: Tesco moving 40,000 server workloads off VMware amid Broadcom’s “abusive… »

“Dangerous” AI models are coming no matter what

“It’s myopic in the extreme to think that no other competitors to Anthropic will develop similar capabilities to Mythos or even that they have not already done so,” says Tarah Wheeler, chief security officer of the specialized cybersecurity consulting firm TPO Group. “There are other companies hot on Anthropic’s heels who probably have the capabilities,… Read More: “Dangerous” AI models are coming no matter what »

Windows and Linux users: The deadline to update Secure Boot keys is near

In 2012, a new form of bootkit was demonstrated. Instead of targeting machines through the BIOS or master boot record, one such bootkit attacked Mac OS X systems by infecting the EFI, a package of firmware that started the boot process. A second very primitive bootkit targeted Windows 8 machines by infecting the UEFI bootkit,… Read More: Windows and Linux users: The deadline to update Secure Boot… »

Year of free HPE software a “step in the correct direction” in VMware rivalry

HPE’s new promotion aims to entice customers to more deeply consider migrating off VMware. While numerous third-party surveys have pointed to a significant amount of VMware customers looking to reduce or eliminate their VMware use over the next few years, concerns around time and cost are also expected to slow or deter migration plans, especially… Read More: Year of free HPE software a “step in the correct… »

Critical Copilot vulnerability allowed hackers to seal 2FA code from users

To bring about the Parameter-to-Prompt Injection an attacker sends the target an email that contains the URL with the syntax https://m365.cloud.microsoft/search/?auth=2&origindomain=microsoft365&q=. The field contains an instruction. Copilot readily complied. “The search functionality is exactly what attackers need, because even with limited capabilities, a user with access to critical information is enough,” the researchers wrote Monday.… Read More: Critical Copilot vulnerability allowed hackers to seal 2FA code from… »

Users cry foul after AMD stripped memory crypto from its consumer CPUs

Limoncello promptly replied: “My apologies; but I don’t have any more information to share on this topic.” With that, the discussion and Kilpatrick’s inquiry were over. The Lendacky comment in 2020 Kilpatrick referred to came in this thread discussing encryption features available in AMD CPUs. Lendacky said that the Ryzen 3700x, a consumer CPU, “should… Read More: Users cry foul after AMD stripped memory crypto from its… »