Security Affairs
NCSC: New UK law bans default passwords on smart devices
The UK National Cyber Security Centre (NCSC) orders smart device manufacturers to ban default passwords starting from April 29, 2024.
The Hacker News
New U.K. Law Bans Default Passwords on Smart Devices Starting April 2024
The U.K. is the first country to ban default passwords on smart devices starting April 29, 2024. Manufacturers must provide unique passwords and secur
CyberNews
Britain bans simple passwords for smart devices
Internet-connected smart devices will soon be required to meet minimum security standards by law in the UK.
Infosecurity News
New UK Smart Device Security Law Comes into Force Today
IoT manufacturers, retailers and importers must comply with new security legislation, the PSTI act, from today
Security Affairs
Security Affairs newsletter Round 469 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
Security Affairs
Ransomware group Dark Angels claims the theft of 1TB of data from chipmaker Nexperia
The Dark Angels (Dunghill) ransomware group claims the hack of the chipmaker Nexperia and the theft of 1 TB of data from the company.
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
The weekly cybersecurity news wrap-up provides readers with the latest information on emerging risks, vulnerabilities, ways to reduce them, and harmful schemes to help make defensive measures proactive.
Security Affairs
Security Affairs newsletter Round 467 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
Bleeping Computer
Roku warns 576,000 accounts hacked in new credential stuffing attacks
Roku warns that 576,000 accounts were hacked in new credential stuffing attacks after disclosing another incident that compromised 15,000 accounts in early March.
Infosecurity News
LG TV Vulnerabilities Expose 91,000 Devices
The issues identified permit unauthorized access to the TV’s root system by bypassing authorization mechanisms
SecurityWeek
Thousands of LG TVs Possibly Exposed to Remote Hacking
Many LG TVs may be vulnerable to remote hacking due to a series of vulnerabilities found by Bitdefender researchers.
CyberNews
Critical LG TV bug allows complete device takeover
LG TV vulnerabilities could expose users to hacker attacks.
The Cyber Express
Critical Alert: LG WebOS Vulnerabilities Put Smart TV Users at Risk
Security researchers recently discovered LG WebOS vulnerabilities, potentially exposing millions of LG smart TVs to exploitation. The vulnerabilities, ranging from
DarkReading
LG Smart TVs at Risk of Attacks, Thanks to 4 OS Vulnerabilities
Scans showed that 91,000 devices are exposed and at risk for unauthorized access and TV set takeover.
Ars Technica
Thousands of LG TVs exposed to the world. Here’s how to ensure yours isn’t one.
LG patches four vulnerabilities that allow malicious hackers to commandeer TVs.
DarkReading
EV Charging Stations Still Riddled With Cybersecurity Vulnerabilities
As more electric vehicles are sold, the risk to compromised charging stations looms large alongside the potential for major cybersecurity exploits.
Security Affairs
Over 91,000 LG smart TVs running webOS are vulnerable to hacking
Researchers found multiple vulnerabilities in LG webOS running on smart TV that could allow attackers to gain root access to the devices.
Bleeping Computer
Microsoft April 2024 Patch Tuesday fixes 150 security flaws, 67 RCEs
Today is Microsoft's April 2024 Patch Tuesday, which includes security updates for 150 flaws and sixty-seven remote code execution bugs.
%20(3)%20(1).webp)
Cyber Security News
90,000+ LG TVs Vulnerable to Authorization Attacks Due to WebOS Vulnerabilities
Bitdefender Labs has revealed a critical security flaw in over 90k LG smart TVs running the company's proprietary WebOS platform.
HACKRead
91,000 Smart LG TV Devices Vulnerable to Remote Takeover
LG TVs vulnerable! Update now to block hackers from taking control & stealing data (webOS 4-7). Millions at risk!
The Hacker News
Researchers Discover LG Smart TV Vulnerabilities Allowing Root Access
Multiple vulnerabilities found in LG webOS on smart TVs could grant unauthorized access. Researchers' findings revealed critical flaws impacting thous
Bleeping Computer
Over 90,000 LG Smart TVs may be exposed to remote attacks
Security researchers at Bitdefender have discovered four vulnerabilities impacting multiple versions of WebOS, the operating system used in LG smart TVs.
The Record
LG releases updates for vulnerabilities that could allow hackers to gain access to TVs
Four new vulnerabilities affecting thousands of LG TVs have been found by researchers who said the issues allow hackers to add themselves as users and take other actions.
The Record
German database company Genios confirms ransomware attack
The Munich-based company said that as a result of the incident, “unfortunately we have to assume an outage for several days.”
CyberNews
Tesla and other carmakers must offer TV channels in Germany
The German broadcasting authority ZAK concluded that cars fall under the regulation of the country’s media law and must include broadcasters' offerings.
Cyber Security News
BlueDucky: A New Tool Exploits Bluetooth Vulnerability With 0-Click Code Execution
A new tool dunned BlueDucky, automating the exploitation of a critical Bluetooth pairing vulnerability that allows for 0-click code execution on unpatched devices.
The Record
Lawmakers set sights on data minimization as states seek to limit companies from capturing vast amounts of personal info
A comprehensive data privacy bill that includes the country’s toughest data minimization standards is on the cusp of passing the Maryland state legislature, giving advocates hope that similar bills will follow nationwide.
CyberNews
Thousands of Roku accounts hacked in credential stuffing attack
Roku has disclosed a data breach that impacted more than 15,000 customers. The hacked accounts were used to make numerous fraudulent purchases.
PCMag
Hackers Hijack Roku Accounts to Buy Streaming Subscriptions, Devices
Hackers hit 15,000+ user accounts to buy the unauthorized subscriptions, likely by using login/password combinations leaked from previous hacks at third-party services.
Bleeping Computer
Over 15,000 hacked Roku accounts sold for 50¢ each to buy hardware
Roku has disclosed a data breach impacting over 15,000 customers after hacked accounts were used to make fraudulent purchases of hardware and streaming subscriptions.
The Hacker News
MoqHao Android Malware Evolves with Auto-Execution Capability
A new variant of MoqHao Android malware silently auto-executes upon installation, snatching data, and hijacking Wi-Fi.
CyberNews
MIT student claims to hack Apple Vision Pro on launch day
An Apple Vision Pro user claims to have already found vulnerabilities in the popular augmented reality headset.
Security Affairs
Ex CIA employee Joshua Adam Schulte sentenced to 40 years in prison
A former software engineer with the U.S. CIA has been sentenced to 40 years in prison for leaking classified documents.
The Hacker News
Former CIA Engineer Sentenced to 40 Years for Leaking Classified Documents
A former CIA software engineer named Joshua Adam Schulte has been sentenced to 40 years in prison for transmitting classified documents to WikiLeaks.
Bleeping Computer
CISA warns of patched iPhone kernel bug now exploited in attacks
CISA warned today that a patched kernel security flaw affecting Apple iPhones, Macs, TVs, and watches is now being actively exploited in attacks.
Latest Hacking News
Apple Begins 2024 Patching A Zero-Day Under Attack
Apple began the new year 2024 with a zero-day patch that it simultaneously released for its numerous products. The tech giant confirmed active exploitation of the zero-day vulnerability that affected Apple TVs, Macs, and iOS
Ars Technica
Ambient light sensors can reveal your device activity. How big a threat is it?
For now, there's no reason for concern, but that could change in coming years.
Security Affairs
Apple fixed actively exploited zero-day CVE-2024-23222
Apple addressed the first zero-day vulnerability that impacts iPhones, Macs, and Apple TVs. The issue is actively exploited in the wild.
Bleeping Computer
Apple fixes first zero-day bug exploited in attacks this year
Apple released security updates to address this year's first zero-day vulnerability exploited in attacks that could impact iPhones, Macs, and Apple TVs.
SecurityWeek
In Other News: WhatsApp Privacy Issue, Spying via Ambient Light Sensor, Bigpanzi Botnet
WhatsApp privacy issue remains unpatched, spying via tablet ambient light sensors, and the Bigpanzi botnet.
DarkReading
Bosch Smart Thermostat Feels the Heat From Firmware Bug
The vulnerability in a popular hospitality industry gadget allows attackers to take over the device, pivot into the user's network, or brick the device entirely, rendering HVAC unusable.
The Cyber Express
Beyond Convenience: Can You Trust Your Smart Home?
You settle into your cozy armchair for a movie night, your smart lights dimming automatically as you fire up the
Ars Technica
4-year campaign backdoored iPhones using possibly the most advanced exploit ever
"Triangulation" infected dozens of iPhones belonging to employees of Moscow-based Kaspersky.
The Cyber Express
Why You Need to Immediately Update Your Apple, Samsung Devices
Our phones safeguard our most critical secrets, from bank details to personal information, yet they stand as the most vulnerable
DarkReading
Dozens of Bugs Patched in Apple TVs and Watches, Macs, iPads, iPhones
A laundry list of tweaks to Safari, Bluetooth, Accessibility, and much more.
SecurityWeek
In Other News: National Laboratory Breach, Airplane GPS Attacks, Russia Accuses Allies of Hacking
Idaho National Laboratory breach, GPS attacks target airplanes, Russian accuses China and North Korea of hacking.
CyberNews
Cyber pros avoid smart devices: there is a good reason
Each new smart device creates a new vulnerability at home by providing a fresh attack vector for attackers. And some devices could cause actual physical harm.
Bleeping Computer
Shadow PC warns of data breach as hacker tries to sell gamers' info
Shadow PC, a provider of high-end cloud computing services, is warning customers of a data breach that exposed customers' private information, as a threat actor claims to be selling the stolen data for over 500,000 customers.
Bleeping Computer
Emergency alert on US phones and TVs today — Don’t worry, it’s just a test
The U.S. Federal Emergency Management Agency (FEMA) and the Federal Communications Commission (FCC) will run an emergency alert test today to check Emergency Alert System (EAS) and Wireless Emergency Alerts (WEA) capabilities nationwide.
CSO
Arm patches bugs in Mali GPUs that affect Android phones and Chromebooks
The vulnerability with active exploitations allows local non-privileged users to access freed-up memory for staging new attacks.
Bleeping Computer
Why Network Visibility Doesn’t Have to be so Complicated
Smart devices offer numerous benefits to both homes and small businesses, but they also pose unique security risks that can fly under the radar. Learn from Firewalla on how consumers and small business owners can effectively secure their smart homes and workplaces with the help of increased visibility.
Cyber Security News
Pandora Malware Attacks Android TVs via Firmware Updates and Pirated Video
Pandora belongs to the variant of Mirai Trojan which has been used to infect smart devices and utilize a network of remotely controlled bots or "zombies" to launch DDOS.
The Hacker News
Mirai Botnet Variant 'Pandora' Hijacks Android TVs for Cyberattacks
A new Mirai botnet variant named Pandora is compromising Android-based TV sets, transforming them into DDoS attack bots.
Cyber Security News
10 Best Secure Web Gateway Vendors in 2023
Best Secure Web Gateway Vendors : 1. Perimeter 81 2. Zscaler 3. Cisco 4. SonicWall 5. Cloudflare 6. Barracuda 7. McAfee 8. Check Point
Cyber Security News
Flipper Zero - Now You Install 3rd-Party Apps With The Penetrating Testing Device
The Flipper Zero team has announced the official launch of "Flipper Apps", a new app store enabling mobile users to download third-party apps
Bleeping Computer
Flipper Zero now has an app store to install third-party apps
The Flipper Zero team has launched its very own 'Flipper Apps' mobile app store, allowing mobile users to install 3rd-party apps and extend the functionality of the popular wireless pen-testing tool.
Bleeping Computer
Flipper Zero now has its own app store for iOS, Android users
The Flipper Zero team has launched its very own 'Flipper Apps' mobile app store, allowing mobile users to install 3rd-party apps and extend the functionality of the popular wireless pen-testing tool.
Naked Security
Urgent! Apple fixes critical zero-day hole in iPhones, iPads and Macs
Don’t delay, do it today. This is a code-implantation bug in WebKit that attackers already know how to exploit.
Cyber Security News
Best VPN For Business in 2023
Best Business VPN (VPN for Business): 1. Perimeter81 2. ExpressVPN 3. NordVPN 4. Surfshark 5. CyberGhost 6. Private Internet Access (PIA)
Naked Security
Apple patch fixes zero-day kernel hole reported by Kaspersky – update now!
Apple didn’t use the words “Triangulation Trojan”, but you probably will.
Security Affairs
Security Affairs newsletter Round 422 by Pierluigi Paganini – International edition
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from […]
Latest Hacking News
Guerilla Malware Shipped With Roughly 9 Million Android Devices
Researchers have revealed the shipping of millions of Android devices pre-infected with Guerilla malware. The infected devices include smartphones, smart TVs, and even smartwatches. Lemon Group Pre-Infected Android Devices With Guerilla Malware According to a recent report
Naked Security
Apple’s secret is out: 3 zero-days fixed, so be sure to patch now!
All Apple users have zero-days that need patching, though some have more zero-days than others.
Ars Technica
Potentially millions of Android TVs and phones come with malware preinstalled
The bane of low-cost Android devices is showing no signs of going away.
Bleeping Computer
Cybercrime gang pre-infects millions of Android devices with malware
A cybercriminal tracked as the "Lemon Group" has been infecting millions of Android-based smartphones, watches, TVs, and TV boxes, with a malware strain named 'Guerilla.'
The Hacker News
This Cybercrime Syndicate Pre-Infected Over 8.9 Million Android Phones Worldwide
🚨 ALERT: Lemon Group, a cybercrime enterprise, has taken control of millions of pre-infected Android smartphones worldwide!
DarkReading
Lemon Group Uses Millions of Pre-Infected Android Phones to Enable Cybercrime Enterprise
Lemon Group's Guerrilla malware model an example of how threat actors are monetizing compromised Android devices, researchers say.
ZDNet
FBI warns of public 'juice jacking' charging stations that steal your data. How to stay protected
Public power outlets are being illegally modified to steal your phone's data, according to the FBI. Here's how to keep your information safe.
Naked Security
Apple patches everything, including a zero-day fix for iOS 15 users
Got an older iPhone that can’t run iOS 16? You’ve got a zero-day to deal with! That super-cool Studio Display monitor needs patching, too.
ZDNet
Modem vs router: What's the difference?
You'll need both for your internet connection, but they do different jobs.
Cyber Security News
10 Best Network Security Solutions - 2023
Best Network Security Solutions - 1. Perimeter81 2. Palo Alto Networks 3. Proofpoint 4. Symantec 5. CheckPoint 6. CheckPoint 7. IBM.
Naked Security
Apple fixes zero-day spyware implant bug – patch now!
Everyone update now! Except for those who don’t need to! Or who need to but will only get updates later on, though Apple isn’t saying yet!
ZDNet
AtlasVPN offers 83% off in privacy promotion
AtlasVPN is hoping to lure new subscribers with massive discounts and a few months' free thrown in.
ZDNet
The 5 best VPN routers of 2023
The best routers for VPN installation will combine safety, speed, and reliable connectivity. Here are ZDNET's top picks for VPN routers in 2023.
ZDNet
11 robot toys that make great gifts in 2023
If you want to spark the imagination of your kids and help them hone tech skills they'll need as adults, check out this list of our favorite tech toys.
ZDNet
Smart home appliances have long lives, but software support is much shorter
Consumer group calls on big name smart appliance manufacturers to make sure software updates are coming for longer.
ZDNet
I went hands-on with Motorola's ThinkPhone and it's surprisingly good
The Lenovo-Motorola collab at CES 2023 is geared towards business professionals and enterprises with all the security features you'd want -- and more.
ZDNet
Flipper Zero: Geeky toy or serious security tool?
Underneath the Flipper Zero's fun exterior is a dual-core ARM processor that powers hardware that can be used to hack the planet, or so claims the cute virtual dolphin on the sticker that came with it.
SecurityWeek
Nearly 300 Vulnerabilities Patched in Huawei's HarmonyOS in 2022
Nearly 300 vulnerabilities were patched by Huawei in its HarmonyOS operating system in 2022.
ZDNet
14 odd and interesting gift ideas for hackers in 2022
From hobbyist hackers and programmers to professionals, they will love our picks for tech gifts for hackers this holiday season.
ZDNet
Best VPN for streaming of 2022
Some VPNs can unblock streaming services. But depending on the device and where you want to stream, it may not be a straightforward process.
ZDNet
Best early Black Friday VPN deals 2022: Save today on Surfshark, Atlas, and more
Many of the most popular VPNs are on sale, and the discounts aren't just fluff, they're legitimately cheaper than the standard pricing.
ZDNet
Best early Black Friday VPN deals 2022: Save today on Surfshark, Atlas, and more
Many of the most popular VPNs are on sale, and the discounts aren't just fluff, they're legitimately cheaper than the standard pricing.
ZDNet
12 odd and interesting gift ideas for hackers in 2022
From hobbyist hackers and programmers to professionals, they will love our picks for tech gifts for hackers this holiday season.
ZDNet
11 robot toys that make great gifts in 2022
If you want to spark the imagination of your kids and help them hone tech skills they'll need as adults, check out this list of our favorite tech toys.
The Hacker News
Critical FileWave MDM Flaws Open Organization-Managed Devices to Remote Hackers
Researchers have identified two critical vulnerabilities, CVE-2022-34907 and CVE-2022-34906, in FileWave's cross-platform mobile device management.
CyberScoop
Cyber criminals attack Ukrainian radio network, broadcast fake message about Zelensky's health
The company that operates nine radio stations across Ukraine said the message did "not correspond to reality."
Ars Technica
Netflix adds “extra home” fee, will block usage in other homes if you don’t pay
Netflix trials an extra home fee in some countries and extra member fee in others.
DataBreaches
Cyberattacks: Karakurt makes a comeback with a bang
The following is a machine translation of an article by Valéry Rieß-Marchive: “A lot of May leaks are coming”. This is the message displayed in large...
Infosecurity News
Final Call for Views on Government App Security Proposals
The cybersecurity industry has until Wednesday, June 29, to submit views on a proposed code of practice for app store operators and developers
Bleeping Computer
Foxconn confirms ransomware attack disrupted production in Mexico
Foxconn electronics manufacturer has confirmed that one of its Mexico-based production plants has been impacted by a ransomware attack in late May.
ZDNet
Misinformation needs tackling and it would help if politicians stopped muddying the water | ZDNet
Politicians lie, everyone knows it, but when the concept in question is how democracy works, it's a serious matter.
Naked Security
Apple patches zero-day kernel hole and much more – update now!
You’ll find fixes for numerous kernel-level code execution holes, including an 0-day vulnerability in many (though not all) versions.
Bleeping Computer
Hackers display “blood is on your hands" on Russian TV, take down RuTube
Hackers continue to target Russia with cyberattacks, defacing Russian TV to show pro-Ukrainian messages and taking down the RuTube video streaming site.
Infosecurity News
Hackers Replace Russian TV Schedules During 'Victory Day' With Anti-War Messages
The hack affected several major networks, including Channel One, Rossiya-1 and NTV-Plus
Infosecurity News
UK to Place Security Requirements on App Developers and Store Operators
Under the proposals, all app stores would be required to commit to a new code of practice
SecurityWeek
Identity-Based Infrastructure Access Firm Teleport Raises $110 Million
Infrastructure access management firm Teleport has raised $110 million in a Series C funding round led by Bessemer Venture Partners, which brings the total raised to $169.2 million and values the firm at $1.1 billion.
ZDNet
Musk's Twitter goal of authenticating all users is good for ending bots but bad for humans | ZDNet
A lawyer's picnic awaits in jurisdictions with more robust defamation laws than the United States if Twitter authenticates all users.
CyberNews
Netflix could charge users for password sharing amid a wave of unsubscriptions | CyberNews
The streaming giant experienced a subscriber loss for the first time in a decade, with over 200,000 viewers canceling their subscriptions in the first three months of 2022.
ZDNet
Ads, NFTs and other badness: Pour one out for the decline of dumb TVs
There is no feedback loop to make manufacturers turn back the clock, the only choice is to make it suck less.
Loading more articles....