A recently disclosed vulnerability in the Common Unix Printing System (CUPS) open-source printing system can be exploited by threat actors to launch distributed denial-of-service (DDoS) attacks with a 600x amplification factor. [more]
Nuclear waste processing facility Sellafield has been fined £332,500 ($440k) by the Office for Nuclear Regulation (ONR) for failing to adhere to cybersecurity standards and putting sensitive nuclear information at risk over four years, from 2019 to 2023. [more]
Google's parent company Alphabet is reportedly in talks for an acquisition that, if it goes through, will be the company's biggest purchase ever. The Wall Street Journal, citing unnamed sources, claims that Google is in negotiations to purchase the cybersecurity company Wiz for $23... [more]
Researchers found half a dozen vulnerabilities of varying severity impacting Netgear WNR614 N300, a budget-friendly router that proved popular among home users and small businesses. [more]
Late last week, Microsoft announced that after a series of high-profile data breaches that involved its services, it had decided it would now be "making security our top priority at Microsoft, above all else." Today, as part of the annual RSA Conference in San Fransisco, the company... [more]
When Microsoft revealed in January that foreign government hackers had once again breached its systems, the news prompted another round of recriminations about the security posture of the world’s largest tech company. [more]
Apple has told its European customers that new EU competition laws will make iPhones less safe. [more]
Although Cloudflare provides resilient DDoS protection, a researcher devised a strategy to bypass the security measures using Cloudflare itself. The process involves exploiting logic flaws in the firewall that allow an adversary to perform DDoS attacks on the target device. [more]
Apple has released iOS 16.6 today for everyone and while the update doesn’t come with new user-facing features, it has over a dozen important security fixes. And notably, two of the fixes are for actively exploited flaws. [more]
The security company Eclypsium has revealed that Gigabyte motherboards have a backdoor that few users know about. [more]
"The big improvement everyone with passwords has been waiting for," Now we are not so sure anymore whether it pays to activate cloud storage in "Google Authenticator." [more]
Do you remember the case from December last year, "Cameras sold in Norway are a security disaster"? [more]
"Server error" allowed Eufy owners to see into each other's homes," [more]
"VPN connections on the iPhone did not secure," [more]
While elevated privilege attacks remain a critical security concern when using Microsoft products, a new report says that the raw number of vulnerabilities is dropping. [more]
LibreSSL issues patches as well. A bug in the very popular open-source OpenSSL cryptography library can be abused to cause an infinite loop which causes a denial of service condition, security researchers have found. [more]