security hacks – Page 28 – WindowsTechs.com

This Week in Security: Log4j, PDF CPU, and I Hacked Starlink

Posted on December 17, 2021 by Jonathan Bennett

The big news this week is Log4j, breaking just a few hours too late to be included in last week’s column. Folks are already asking if this is the most …read more Continue reading This Week in Security: Log4j, PDF CPU, and I Hacked Starlink→

PinePhone Malware Surprises Users, Raises Questions

Posted on December 16, 2021 by Arsenijs Picugins

On December 5th, someone by the IRC nickname of [ubuntu] joined the Pine64 Discord’s #pinephone channel through an IRC bridge. In the spirit of December gift-giving traditions, they have presented …read more Continue reading PinePhone Malware Surprises Users, Raises Questions→

This Week in Security: Printing Shellz, ms-officecmd, And AI Security

Posted on December 10, 2021 by Jonathan Bennett

Researchers at f-secure have developed an impressive new attack, leveraging HP printers as an unexpected attack surface. Printing Shellz (PDF) is a one-click attack, where simply visiting a malicious webpage …read more Continue reading This Week in Security: Printing Shellz, ms-officecmd, And AI Security→

This Week in Security: GoDaddy, Tardigrade, Monox, and BigSig

Posted on December 3, 2021 by Jonathan Bennett

After the Thanksgiving break, we have two weeks of news to cover, so hang on for an extra-long entry. First up is GoDaddy, who suffered a breach starting on September …read more Continue reading This Week in Security: GoDaddy, Tardigrade, Monox, and BigSig→

How To Easily Set Up Secure OTA Firmware Updates on ESP32

Posted on November 29, 2021 by Donald Papp

ESP32 board with battery and nearby antenna

After an electronic IoT device has been deployed into the world, it may be necessary to reprogram or update it. But if physical access to the device (or devices) is …read more Continue reading How To Easily Set Up Secure OTA Firmware Updates on ESP32→

This Week in Security: Intel Atoms Spill Secrets, ICMP Poisons DNS, and The Blacksmith

Posted on November 19, 2021 by Jonathan Bennett

Intel has announced CVE-2021-0146, a vulnerability in certain processors based on the Atom architecture, and the Trusted Platform Module (TPM) is at the center of the problem. The goal of …read more Continue reading This Week in Security: Intel Atoms Spill Secrets, ICMP Poisons DNS, and The Blacksmith→

This Week in Security: Unicode Strikes, NPM Again, and First Steps to PS5 Crack

Posted on November 12, 2021 by Jonathan Bennett

Maybe we really were better off with ASCII. Back in my day, we had space for 256 characters, didn’t even use 128 of them, and we took what we got. …read more Continue reading This Week in Security: Unicode Strikes, NPM Again, and First Steps to PS5 Crack→

This Week in Security:Use-After-Free For Dummies, WiFi cracking, and PHP-FPM

Posted on October 29, 2021 by Jonathan Bennett

In a brilliant write-up, [Stephen Tong] brings us his “Use-After-Free for Dummies“. It’s a surprising tale of a vulnerability that really shouldn’t exist, and a walkthrough of how to complete …read more Continue reading This Week in Security:Use-After-Free For Dummies, WiFi cracking, and PHP-FPM→

Ethernet Cable Turned into Antenna to Exploit Air-Gapped Computers

Posted on October 27, 2021 by Dan Maloney

Good news, everyone! Security researcher [Mordechai Guri] has given us yet another reason to look askance at our computers and wonder who might be sniffing in our private doings. This …read more Continue reading Ethernet Cable Turned into Antenna to Exploit Air-Gapped Computers→

This Week in Security: Argentina, MysterySnail, and L0phtcrack

Posted on October 22, 2021 by Jonathan Bennett

The government of Argentina has a national ID card system, and as a result maintains a database containing data on every citizen in the country. What could possibly go wrong? …read more Continue reading This Week in Security: Argentina, MysterySnail, and L0phtcrack→