security hacks – Page 9 – WindowsTechs.com

This Week in Security: CVSS 4, OAuth, and ActiveMQ

Posted on November 3, 2023 by Jonathan Bennett

We’ve talked a few times here about the issues with the CVSS system. We’ve seen CVE farming, where a moderate issue, or even a non-issue, gets assigned a ridiculously high …read more Continue reading This Week in Security: CVSS 4, OAuth, and ActiveMQ→

Proposed European Electronic ID Law Raises Concerns

Posted on November 3, 2023 by Jenny List

The harmonisation of standards for electronic identification across the EU should normally be soporific enough to send even the most Club-Mate-hyped hacker straight to sleep, but as Computer Weekly reports, …read more Continue reading Proposed European Electronic ID Law Raises Concerns→

This Week in Security: 1Password, Polyglots, and Roundcube

Posted on October 27, 2023 by Jonathan Bennett

This week we got news of a security incident at 1Password, and we’re certain we aren’t the only ones hoping it’s not a repeat of what happened at LastPass. 1Password …read more Continue reading This Week in Security: 1Password, Polyglots, and Roundcube→

This Week in Security: Browser Exploits, Play Protect, and Turn ON your Firewall!

Posted on October 20, 2023 by Jonathan Bennett

Google Chrome has done a lot of work on JavaScript performance, pushing the V8 engine to more and more impressive feats. Recently, that optimization has one more piece, the Maglev …read more Continue reading This Week in Security: Browser Exploits, Play Protect, and Turn ON your Firewall!→

This Week in Security: Curl Reveal, Rapid Reset DDoS, and Libcue

Posted on October 13, 2023 by Jonathan Bennett

Curl gave us all a big warning that a severe security problem had been found in that code-base. Given the staggering number of Curl installs around the world, we held …read more Continue reading This Week in Security: Curl Reveal, Rapid Reset DDoS, and Libcue→

This Week in Security: Looney Tunables, Not a 0-day*, and Curl Warning

Posted on October 6, 2023 by Jonathan Bennett

This week starts out with a nifty vulnerability in the glibc dynamic loader. This is an important step in running a binary executable on Linux, as it pulls the list …read more Continue reading This Week in Security: Looney Tunables, Not a 0-day*, and Curl Warning→

This Week in Security: Magic Packets, GPU.zip, and Enter the Sandman

Posted on September 29, 2023 by Jonathan Bennett

Leading out the news this week is a report of “BlackTech”, an Advanced Persistent Threat (APT) group that appears to be based out of China, that has been installing malicious …read more Continue reading This Week in Security: Magic Packets, GPU.zip, and Enter the Sandman→

This Week in Security: WebP, Cavium, Gitlab, and Asahi Lina

Posted on September 22, 2023 by Jonathan Bennett

Last week we covered the latest 0-day from NSO group, BLASTPASS. There’s more details about exactly how that works, and a bit of a worrying revelation for Android users. One …read more Continue reading This Week in Security: WebP, Cavium, Gitlab, and Asahi Lina→

This Week in Security: Blastpass, MGM Heist, and Killer Themes

Posted on September 15, 2023 by Jonathan Bennett

There’s yet another 0-day exploit chain discovered as part of NSO Group’s Pegasus malware suite. This one is known as BLASTPASS, and it’s a nasty one. There’s no user interaction …read more Continue reading This Week in Security: Blastpass, MGM Heist, and Killer Themes→

Your Car is a Privacy Nightmare On Wheels

Posted on September 12, 2023 by Jenny List

There was a time when a car was a machine, one which only came to life when its key was turned, and functioned simply as a way to get its …read more Continue reading Your Car is a Privacy Nightmare On Wheels→