An exploit could lead to remote shutdown of security systems: who is responsible?
A security systems app appears to have leaked highly sensitive data. MASmobile Classic, intended for alarm systems installers to look up customer data, could unintentionally send codes to disable security systems online to malicious people.
This is according to research by the Dutch station BNR.... Read more
‘Increasing number of secrets leak in public GitHub repositories’
The amount of secrets leaked in public GitHub repositories is higher than ever. A report puts the total number of new leaks at 12.8 million by 2023.
12.8 million secrets were not properly shielded in public GitHub repositories in 2023. As a result, sensitive data is visible to everyone. Among t... Read more
IBM: Cloud use makes Europe biggest target of hackers in 2023
Recent research by IBM Security X-Force finds that Europe faced the most cyber attacks in 2023. High cloud adoption that increases the attack surface is the main reason.
The annual IBM X-Force Threat Intelligence Index 2024 shows that Europe suffered the most cyber attacks of any world region in... Read more
Private keys and logins BMW were stored in public Azure server
A misconfiguration of a Microsoft Azure server at BMW leaked sensitive company information. This was discovered by a SOCRadar researcher during a routine Internet scan, reports TechCrunch.
According to TechCrunch, Can Yoleri, a security researcher at SOCRadar, discovered the misconfigured and th... Read more
ChatGPT’s recent leak the result of account takeover
ChatGPT inadvertently stored conversations of other users in the conversation history of another user. This poses a security problem for other users, as passwords, among other things, were leaked. The leak was disclosed to the editors of Ars Technica.
Update 31-01 (Erik van Klinken): It is now k... Read more
HPE also infiltrated by the Russian hackers that hit Microsoft
HPE has revealed that it has been infiltrated by hackers employed by Russia. A "small percentage" of HPE email data has been stolen, with affected individuals scattered throughout the company.
The email information came from employees in the cybersecurity, go-to-market and business segments, amo... Read more
AI data can be stolen from Apple, AMD and Qualcomm chips
Many GPUs are vulnerable to leaking data from AI models. An attacker only needs access to the operating system of the device within which the GPU is running.
Researchers from security firm Trail of Bits explain to Wired that GPU vulnerabilities are becoming increasingly urgent. AI data in chunks... Read more
Google Chrome has Safety Check: controls and needs control
Google is working on the security of the Chrome browser for the desktop. The functionality of the feature is mainly scanning for threats. But further actions are a task for the user.
The latest update for Chrome adds the Safety Check feature to the browser. This feature always runs in the backgr... Read more
MongoDB leaks data, but does not tell how much
MongoDB is still investigating a security incident in which hackers penetrated customers' business systems. Contact information and metadata were allegedly accessed. The number of involved customers stays unclear.
During the weekend of Dec. 16 and 17, a security incident occurred at MongoDB. On... Read more
What made NXP so valuable to Chinese hackers?
It emerged on Friday that the Chinese hacker group "Chimera" had been able to spy on NXP for years. Its corporate network's security proved inadequate, resulting in the theft of chip designs. But what in particular made NXP's chips attractive to the Chinese hackers?
Dutch news outlet NRC reveale... Read more