Apple patches 2024’s first zero-day – Security
Apple’s first zero-day of 2024 has been disclosed, with fixes pushed out for MacOS, iOS, and iPadOS. Apple’s description of CVE-2024-23222 states only that the…
Month: January 2024
SEC confirms X account was hacked in SIM swapping attack
The U.S. Securities and Exchange Commission confirmed today that its X account was hacked through a SIM-swapping attack on the cell phone number associated with…
Australia names, sanctions Russian over Medibank attack – Security
The federal government has named and sanctioned Russian citizen Aleksandr Ermakov over his alleged involvement in the Medibank cyber attack. The government’s action includes a…
Historic data leak reveals 26 billion records: check what’s exposed
Mother of all breaches – a historic data leak reveals 26 billion records: check what’s exposed Pierluigi Paganini January 22, 2024 Cybersecurity researcher Bob Dyachenko…
Tracking AI Agent Activity, 400 SF Cameras, AI Sleeper Agents…
Unsupervised Learning is a Security, AI, and Meaning-focused newsletter and podcast that looks at how best to thrive as humans. It combines original ideas and…
Cracked macOS apps drain wallets using scripts fetched from DNS records
Hackers are using a stealthy method to deliver to macOS users information-stealing malware through DNS records that hide malicious scripts. The campaign appears directed at users…
Trezor Data Breach Exposes Email and Names of 66,000 Users
Trezor, the hardware wallet manufacturer, has disclosed a data breach involving unauthorized access to a third-party support portal used by the company. In a worrying…
Victoria University unifies digital and campus infrastructure – Strategy – Training & Development
Victoria University has brought its digital and campus infrastructure functions together, appointing Stuart Hildyard to lead the new department. Hildyard – who previously headed up…
Malicious web redirect scripts stealth up to hide on hacked sites
Security researchers looking at more than 10,000 scripts used by the Parrot traffic direction system (TDS) noticed an evolution marked by optimizations that make malicious code…
New Chae$ 4.1 Malware Hides in Driver Downloads
The original Chae$ malware was identified in September 2023, and its latest version, dubbed Chae$ 4.1, employs advanced code polymorphism to bypass antivirus detection. Morphisec…
MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries
Several public and popular libraries abandoned but still used in Java and Android applications have been found susceptible to a new software supply chain attack…
Dutch companies not ready for AI
Less than a quarter of Dutch companies are ready for artificial intelligence (AI), according to Cisco’s AI readiness index, with only 4% fully prepared to…