-
Intel CPUs vulnerable to new transient execution side-channel attack
A new side-channel attack impacting multiple generations of Intel CPUs has been discovered, allowing data to be leaked through the EFLAGS register.
- April 24, 2023
- 03:38 PM
0
-
Brazil seizing Flipper Zero shipments to prevent use in crime
The Brazilian National Telecommunications Agency is seizing incoming Flipper Zero purchases due to its alleged use in criminal activity, with purchasers stating that the government agency has rejected all attempts to certify the equipment.
- March 11, 2023
- 10:23 AM
6
-
State of Browser Attacks: Learn from John Hammond, Troy Hunt & Matt Johansen
Join Push Security's free three-part webinar series where top security researchers break down the browser-based attacks driving today's biggest breaches - from AiTM phishing and ConsentFix to compromised credentials and session hijacking.
-
MSI breaks Secure Boot for hundreds of motherboards
Over 290 MSI motherboards are reportedly affected by an insecure default UEFI Secure Boot setting settings that allows any operating system image to run regardless of whether it has a wrong or missing signature.
- January 16, 2023
- 05:02 PM
- 8
-
Corsair keyboard bug makes it type on its own, no malware involved
Corsair has confirmed that a bug in the firmware of K100 keyboards, and not malware, is behind previously entered text being auto-typed into applications days later.
- December 21, 2022
- 04:47 PM
- 7
-
Internet connectivity worldwide impacted by severed fiber cables in France
A major Internet cable in the South of France was severed yesterday at 20:30 UTC, impacting subsea cable connectivity to Europe, Asia, and the United States and causing data packet losses and increased website response latency.
- October 20, 2022
- 09:25 AM
- 1
-
Intel confirms leaked Alder Lake BIOS Source Code is authentic
Intel has confirmed that a source code leak for the UEFI BIOS of Alder Lake CPUs is authentic and has been released by a third party.
- October 09, 2022
- 08:53 PM
- 1
-
Ethernet VLAN Stacking flaws let hackers launch DoS, MiTM attacks
Four vulnerabilities in the widely adopted 'Stacked VLAN' Ethernet feature allows attackers to perform denial-of-service (DoS) or man-in-the-middle (MitM) attacks against network targets using custom-crafted packets.
- September 28, 2022
- 11:05 AM
- 0
-
HP will pay customers for blocking non-HP ink cartridges in EU
HP printer owners forced to use HP ink and toner cartridges in Europe will receive compensation from the vendor for not adequately informing them about the limitations of the devices they bought.
- September 12, 2022
- 01:24 PM
- 1
-
HP fixes severe bug in pre-installed Support Assistant tool
HP issued a security advisory alerting users about a newly discovered vulnerability in HP Support Assistant, a software tool that comes pre-installed on all HP laptops and desktop computers, including the Omen sub-brand.
- September 07, 2022
- 02:06 PM
- 0
-
Anker Eufy smart home hubs exposed to RCE attacks by critical flaw
Anker's central smart home device hub, Eufy Homebase 2, was vulnerable to three vulnerabilities, one of which is a critical remote code execution (RCE) flaw.
- June 16, 2022
- 01:38 PM
- 0
-
New PACMAN hardware attack targets Macs with Apple M1 CPUs
A new hardware attack targeting Pointer Authentication in Apple M1 CPUs with speculative execution enables attackers to gain arbitrary code execution on Mac systems.
- June 10, 2022
- 03:15 PM
- 0
-
NVIDIA has open-sourced its Linux GPU kernel drivers
NVIDIA has published the source code of its kernel modules for the R515 driver, using a dual licensing model that combines the GPL and MIT licenses, making the modules legally re-distributable.
- May 12, 2022
- 10:31 AM
- 1
-
Cisco vulnerability lets hackers craft their own login credentials
Cisco has released a security advisory to warn about a critical vulnerability (CVSS v3 score: 10.0), tracked as CVE-2022-20695, impacting the Wireless LAN Controller (WLC) software.
- April 15, 2022
- 01:54 PM
- 0
-
AMD confirms GPU driver bug overclocks CPUs without permission
AMD is investigating an issue in its GPU software suite that causes an auto-adjustment of AMD Ryzen CPU performance settings for users without permission.
- April 06, 2022
- 09:53 AM
- 0
-
Western Digital My Cloud OS update fixes critical vulnerability
Western Digital has released new My Cloud OS firmware to fix a vulnerability exploited by bug hunters during the Pwn2Own 2021 hacking competition to achieve remote code execution.
- March 24, 2022
- 05:47 PM
- 0
-
HP patches 16 UEFI firmware bugs allowing stealthy malware infections
HP has disclosed 16 high-impact UEFI firmware vulnerabilities that could allow threat actors to infect devices with malware that gain high privileges and remain undetectable by installed security software.
- March 08, 2022
- 01:00 PM
- 0
-
QNAP force-installs update after DeadBolt ransomware hits 3,600 devices
QNAP force-updated customer's Network Attached Storage (NAS) devices with firmware containing the latest security updates to protect against the DeadBolt ransomware, which has already encrypted over 3,600 devices.
- January 28, 2022
- 01:30 AM
- 0
-
Hundreds of thousands of MikroTik devices still vulnerable to botnets
Approximately 300,000 MikroTik routers are vulnerable to critical vulnerabilities that malware botnets can exploit for cryptomining and DDoS attacks.
- December 09, 2021
- 06:00 AM
- 1
-
Nine WiFi routers used by millions were vulnerable to 226 flaws
Security researchers analyzed nine popular WiFi routers and found a total of 226 potential vulnerabilities in them, even when running the latest firmware.
- December 02, 2021
- 09:30 AM
- 5
-
New Rowhammer technique bypasses existing DDR4 memory defenses
Researchers have developed a new fuzzing-based technique called 'Blacksmith' that revives Rowhammer vulnerability attacks against modern DRAM devices that bypasses existing mitigations.
- November 15, 2021
- 05:27 PM
- 0
6
