Category Archives: Tech

Exchange/Outlook autodiscover bug exposed 100,000+ email passwords

Enlarge / If you own the right domain, you can intercept hundreds of thousands of innocent third parties’ email credentials, just by operating a standard webserver. reader comments 35 with 25 posters participating, including story author Share this story Security researcher Amit Serper of Guardicore discovered a severe flaw in Microsoft’s autodiscover—the protocol which allows… Read More »

Security audit raises severe warnings on Chinese smartphone models

Enlarge / Be sure you know what you’re getting into before buying and using unfamiliarly branded smartphones—especially international models not originally intended for your country. reader comments 11 with 11 posters participating Share this story The Lithuanian National Cyber Security Centre (NCSC) recently published a security assessment of three recent-model Chinese-made smartphones—Huawei’s P40 5G, Xiaomi’s… Read More »

Phone calls disrupted by ongoing DDoS cyber attack on VOIP.ms

reader comments 19 with 18 posters participating Share this story Quebec-based provider of telephony services VoIP.ms is facing an aggressive Distributed Denial of Service (DDoS) cyber attack, causing a disruption in phone calls and services. The incident began around September 16 and has put a strain on the VoIP provider’s systems, websites, and operations. VoIP.ms… Read More »

Apple users warned: Clicking this attachment will take over your macOS

reader comments 37 with 30 posters participating Share this story A code execution bug in Apple’s macOS allows remote attackers to run arbitrary commands on your device. And the worst part is, Apple hasn’t fully patched it yet, as tested by Ars. Those shortcut files can take over your Mac Independent security researcher Park Minchan… Read More »

Linux Foundation says companies are desperate for open source talent

Enlarge / It probably shouldn’t be considered “surprising” when a Linux certification entity reports that Linux certifications are highly desirable. reader comments 37 with 29 posters participating, including story author Share this story The Linux Foundation released its 2021 Open Source Jobs Report this month, which aims to inform both sides of the IT hiring… Read More »

Ransomware victims panicked while FBI secretly held REvil decryption key

Enlarge / The seal of the Federal Bureau of Investigation (FBI) is seen at the J. Edgar Hoover building in Washington, D.C. reader comments 20 with 16 posters participating Share this story For three weeks during the REvil ransomeware attack this summer, the FBI secretly withheld the key that would have decrypted data and computers… Read More »

$5.9 million ransomware attack on farming co-op may cause food shortage

reader comments 18 with 17 posters participating Share this story Iowa-based provider of agriculture services NEW Cooperative Inc. has been hit by a ransomware attack, forcing it to take its systems offline. The BlackMatter group that is behind the attack has put forth a $5.9 million ransom demand. The farming cooperative is seen stating the attack… Read More »

Nation-state espionage group breaches Alaska Department of Health

Enlarge / If Alaska’s native Ursus arctos population could be enlisted for cyber defense patrols, attackers might need paws for reflection before committing a criminal breach. reader comments 47 with 42 posters participating, including story author Share this story Last week, Alaska’s Department of Health and Social Services (DHSS) disclosed a security breach apparently made… Read More »

Epik data breach impacts 15 million users, including non-customers

reader comments 164 with 71 posters participating Share this story Epik has now confirmed that an “unauthorized intrusion” did in fact occur into its systems. The announcement follows last week’s incident of hacktivist collective Anonymous leaking 180 GB of data stolen from online service provider Epik. To mock the company’s initial response to the data… Read More »