Apple, Google, and Microsoft Just Fixed Zero-Day Security Flaws
Firefox gets a needed tune-up, SolarWinds squashes two high-severity bugs, Oracle patches 433 vulnerabilities, and more updates you should make now.
Security / Cyberattacks and Hacks
DOJ Detected SolarWinds Breach Months Before Public Disclosure
In May 2020, the US Department of Justice noticed Russian hackers in its network but did not realize the significance of what it had found for six months.
NSA Cybersecurity Director Says ‘Buckle Up’ for Generative AI
The security issues raised by ChatGPT and similar tech are just beginning to emerge, but Rob Joyce says it’s time to prepare for what comes next.
A Security Team Is Turning This Malware Gang’s Tricks Against It
The cybercriminals behind the Gootloader malware have found clever ways to avoid detection. But researchers are using those same mechanisms to stop them.
Google’s Authenticator App Now Lets You Sync 2FA Codes Across Devices
You can now sync sign-in codes across devices—but they aren’t end-to-end encrypted.
Intel Let Google Cloud Hack Its New Secure Chips and Found 10 Bugs
To protect its Confidential Computing cloud infrastructure and gain critical insights, Google leans on its relationships with chipmakers.
Hacker Group Names Are Now Absurdly Out of Control
Pumpkin Sandstorm. Spandex Tempest. Charming Kitten. Is this really how we want to name the hackers wreaking havoc worldwide?
Criminals Are Using Tiny Devices to Hack and Steal Cars
Apple thwarts NSO’s spyware, the rise of a GPT-4 black market, Russia targets Starlink internet connections, and more.
The Huge 3CX Breach Was Actually 2 Linked Supply Chain Attacks
The mass compromise of the VoIP firm’s customers is the first confirmed incident where one software supply chain attack enabled another, researchers say.
The Hacker Who Hijacked Matt Walsh’s Twitter Was Just ‘Bored’
The breach of the right-wing provocateur was simply a way of “stirring up some drama,” the attacker tells WIRED. But the damage could have been much worse.