Collaborate Disseminate
After hundreds of media outlets worldwide repeated the false claim that a botnet of three million toothbrushes attacked a Swiss company, the cybersecurity firm at the centre of the story has now issued a statement. Continue reading Tooth be told: Toothbrush DDoS attack claim was lost in translation, says Fortinet
No, three million smart toothbrushes didn’t launch a DDoS attack against a Swiss company. Continue reading The toothbrush DDoS attack: How misinformation spreads in the cybersecurity world
China-sponsored attacks likened to “placing bombs in water treatment facilities, and power plants”.
Is it just me, or does this sound like the plot of a Mission Impossible movie? Continue reading China is hacking Wi-Fi routers for attack on US electrical grid and water supplies, FBI warns
Fancy a high-profile cybersecurity job? Here’s one for you.
Role: Cyber Security Manager.
Location: Buckingham Palace. Continue reading Be the Royal Family’s Cybersecurity Manager, and get a cut-price honey dipper!
I am trying to understand the implication of CVE-2023-40791. The CVE reads:
"Linux kernel before 6.4.12 fails to unpin pages in certain situations".
NetApp says this could lead to modification of data or denial of service. Is t… Continue reading What are the security concerns from failing to unpin memory?
As we know, a deauth (de-authentication) attack is an attack in which an attacker crafts a forged deauthentication frame, and sends it to the client as if coming from the Access Point, and then the client (victim) will be deauthenticated, … Continue reading Is the Wi-Fi deauthentication attack in the wikipedia article correct? [closed]
The strange vulnerability could have allowed for escalation of privilege, denial of service or information disclosure attacks. Continue reading Intel Patches Widespread Processor Vulnerability
Want to crash someone’s iPhone or iPad? Turns out it’s not that tricky, if you have a Flipper Zero. Continue reading Making iPhones and iPads crash with a Flipper Zero
The Flipper Zero is an incredibly versatile hacking device. Now it can be used to crash iPhones in its vicinity by sending them a never-ending stream of pop-ups.
These types of hacks have been possible for decades, but they require special equipment and a fair amount of expertise. The capabilities generally required expensive SDRs—short for software-defined radios—that, unlike traditional hardware-defined radios, use firmware and processors to digitally re-create radio signal transmissions and receptions. The $200 Flipper Zero isn’t an SDR in its own right, but as a software-controlled radio, it can do many of the same things at an affordable price and with a form factor that’s much more convenient than the previous generations of SDRs…
I’m looking into HTTP version specific risks. HTTP 1.0 lacks support for persistent connections, meaning each request/response pair requires a new TCP connection to be established.
Considering the overhead associated with constantly openin… Continue reading Is HTTP/1.0 inherently more susceptible to denial-of-service (DoS) attacks?