General Cyber News via Ars Technica Risk Assessment

Debit card fraud leaves Ally Bank customers, small stores reeling

Some are seeing charges on cards they've never activated or hardly used.
Publish Date: 8/19/2022
read more -->

Zoom patches critical vulnerability again after prior fix was bypassed

MacOS security researcher was able to bypass the fix issued just last weekend.
Publish Date: 8/18/2022
read more -->

Netflix’s ad-supported plan likely to have another drawback: No video downloads

Text found in iOS app code says plan won't allow downloads for offline viewing.
Publish Date: 8/18/2022
read more -->

Ring patched an Android bug that could have exposed video footage

After a chain of attacks, security firm got access to locations and recordings.
Publish Date: 8/18/2022
read more -->

Update Chrome now to patch actively exploited zero-day

It's the fifth Chrome zero-day patched by Google this year.
Publish Date: 8/17/2022
read more -->

iOS VPNs have leaked traffic for years, researcher claims [Updated]

VPNs on Apple mobile devices reportedly keep connections open and expose data.
Publish Date: 8/17/2022
read more -->

Chrome “Feed” is tantalizing, but it’s not the return of Google Reader

It's not that Google doesn't like RSS, it just wants RSS to look like Google.
Publish Date: 8/16/2022
read more -->

1,900 Signal users’ phone numbers exposed by Twilio phishing

No message, profile, or other data exposed—but SMS remains a weakness.
Publish Date: 8/15/2022
read more -->

Update Zoom for Mac now to avoid root-access vulnerability

Feature you'd normally want for secure software opened a huge hole.
Publish Date: 8/15/2022
read more -->

Machine learning, concluded: Did the “no-code” tools beat manual analysis?

In the finale of our experiment, we look at how the low/no-code tools performed.
Publish Date: 8/15/2022
read more -->

A new jailbreak for John Deere tractors rides the right-to-repair wave

Exploit now provides root access to two popular models of the company’s farm equipment.
Publish Date: 8/15/2022
read more -->

Samsung heir pardoned due to South Korean economic needs

Lee's ascendancy to Samsung chairman position key to "vitalizing the economy."
Publish Date: 8/12/2022
read more -->

I’m a security reporter and got fooled by a blatant phish

Think you're too smart to be fooled by a phisher? Think again.
Publish Date: 8/11/2022
read more -->

Amid backlash from privacy advocates, Meta expands end-to-end encryption trial

E2EE prevents anyone other than the sender and receiver from reading messages.
Publish Date: 8/11/2022
read more -->

One of 5G’s biggest features is a security minefield

There are vulnerabilities in 5G platforms carriers offer to wrangle embedded device data.
Publish Date: 8/11/2022
read more -->

Google Fiber was stalled for years but now says it’ll expand to 5 new states

ISP's history suggests you can expect only limited availability in each area.
Publish Date: 8/10/2022
read more -->

Man who built ISP instead of paying Comcast $50K expands to hundreds of homes

Jared Mauch gets $2.6 million from gov't to expand fiber ISP in rural Michigan.
Publish Date: 8/10/2022
read more -->

Phishers who breached Twilio and targeted Cloudflare could easily get you, too

Unusually resourced threat actor has targeted multiple companies in recent days.
Publish Date: 8/9/2022
read more -->

10 malicious Python packages exposed in latest repository attack

Supply-chain attacks are moving GitHub toward digitally signed packages.
Publish Date: 8/9/2022
read more -->

Setting our heart-attack-predicting AI loose with “no-code” tools

In the second part of this three-part series, our heart attack predictions take flight.
Publish Date: 8/9/2022
read more -->


Copyright Ⓒ 2010 SecuritySpecifiers™