SSH protects the world’s most sensitive networks. It just got a lot weaker
Novel Terrapin attack uses prefix truncation to downgrade the security of SSH channels.
Xfinity waited to patch critical Citrix Bleed 0-day. Now it’s paying the price
Data for almost 36 million customers now in the hands of unknown hackers.
Ukrainian cellular and Internet still out, 1 day after suspected Russian cyberattack | Ars Technica
Hackers tied to Russian military take responsibility for hack on Ukraine's biggest provider.
Windows 10 gets three more years of security updates, if you can afford them | Ars Technica
Windows 10's end-of-support date is October 14, 2025. That's the day that most Windows 10 PCs will receive their last security update and the date when most people should find a way to move to Windows 11 to ensure that they stay secure. As it has done for other stubbornly popular versions of Windows, though, Microsoft is offering a reprieve for those who want or need to stay on Windows 10: three additional years of security updates, provided to those who can pay for the Extended Security Updates (ESU) program.
USB worm unleashed by Russian state hackers spreads worldwide
LitterDrifter's means of self-propagation are simple. So why is it spreading so widely?
Thousands of routers and cameras vulnerable to new 0-day attacks by hostile botnet | Ars Technica
Internet scans show 7,000 devices may be vulnerable. The true number could be higher.
In a first, cryptographic keys protecting SSH connections stolen in new attack | Ars Technica
An error as small as a single flipped memory bit is all it takes to expose a private key. The vulnerability occurs when there are errors during the signature generation that takes place when a client and server are establishing a connection. It affects only keys using the RSA cryptographic algorithm, which the researchers found in roughly a third of the SSH signatures they examined. That translates to roughly 1 billion signatures out of the 3.2 billion signatures examined. Of the roughly 1 billion RSA signatures, about one in a million exposed the private key of the host.
Intel fixes high-severity CPU bug that causes “very strange behavior”
Among other things, bug allows code running inside a VM to crash hypervisors.
Microsoft profiles new threat group with unusual but effective practices
Octo Tempest employs tactics that many of its targets aren't prepared for.
Hackers can force iOS and macOS browsers to divulge passwords and much more
iLeakage is practical and requires minimal resources. A patch isn't (yet) available.
Vulnerable Arm GPU drivers under active exploitation. Patches may not be available | Ars Technica
Vulnerability allows attackers to tamper with data stored in device memory.
Critical vulnerabilities in Exim threaten over 250k email servers worldwide | Ars Technica
Remote code execution requiring no authentication fixed. 2 other RCEs remain unpatched.
How Google Authenticator made one company’s network breach much, much worse
Google's app for generating MFA codes syncs to user accounts by default. Who knew?
With 0-days hitting Chrome, iOS, and dozens more this month, is no software safe? | Ars Technica
With 70 zero-days uncovered so far this year, 2023 is on track to set a new record.
North Korea-backed hackers target security researchers with 0-day
Google researchers say currently unfixed vulnerability affects a popular software package.
Microsoft takes pains to obscure role in 0-days that caused email breach
Critics also decry Microsoft's "pay-to-play" monitoring that detected intrusions.
WordPress plugin installed on 1 million+ sites logged plaintext passwords
AIOS bills itself as an "all-in-one" security solution. A just-fixed bug undermined that.
Hackers exploit gaping Windows loophole to give their malware kernel access
Microsoft blocks a new batch of system drivers, but the loophole empowering them remains.
Mass exploitation of critical MOVEit flaw is ransacking orgs big and small | Ars Technica
SQL injection attacks on MOVEit file-transfer service likely to get worse.
“Clickless” iOS exploits infect Kaspersky iPhones with never-before-seen malware | Ars Technica
"Operation Triangulation" stole mic recordings, photos, geolocation, and more.
Here’s how long it takes new BrutePrint attack to unlock 10 different smartphones
Researchers have devised a low-cost smartphone attack that cracks the authentication fingerprint used to unlock the screen and perform other sensitive actions on a range of Android devices in as little as 45 minutes.
Inner workings revealed for “Predator,” the Android malware that exploited 5 0-days
Spyware is sold to countries including Egypt, Indonesia, Oman, Saudi Arabia, and Serbia. Smartphone malware sold to governments around the world can surreptitiously record voice calls and nearby audio, collect data from apps such as Signal and WhatsApp, and hide apps or prevent them from running upon device reboots, researchers from Cisco’s Talos security team have found.
Apple uses iOS and macOS Rapid Security Response feature for the first time
When it announced iOS 16, iPadOS 16, and macOS Ventura at its Worldwide Developers Conference last summer, one of the features Apple introduced was something called "Rapid Security Response." The feature is meant to enable quicker and more frequent security patches for Apple's newest operating systems, especially for WebKit-related flaws that affect Safari and other apps that use Apple's built-in browser engine.
Android app from China executed 0-day exploit on millions of devices | Ars Technica
Fast-growing e-commerce app Pinduoduo had an EvilParcel stow-away.
Android app from China executed 0-day exploit on millions of devices | Ars Technica
Fast-growing e-commerce app Pinduoduo had an EvilParcel stow-away.