“We’ll know our disinformation program is complete when everything the American public believes is false.”  -- William Casey, former director of the CIA, upon being asked what the goal of the agency was (in 1981).

Bidgear ad

 

 

When Netflix launched its ad-supported tier in November 2022, it tried to tempt viewers in with discounted rates, hoping to win new consumers and sell their eyeballs to ad-slingers. But Amazon Prime, well, it went a different route.

A new iOS and Android trojan named 'GoldPickaxe' employs a social engineering scheme to trick victims into scanning their faces and ID documents, which are believed to be used to generate deepfakes for unauthorized banking access.

Security updates for these four vulnerabilities were made available by Ivanti well over a month ago on January 31, 2024.

According to the researcher, the total number of internet-exposed Ivanti servers is 24,239, meaning that more than half of them remain unpatched.

Regarding CVE-2024-22024, which was disclosed and fixed on February 8, 2024, Sejiyama's research shows a global patching percentage of only 21.1% as of today, leaving 19,132 servers exposed to the dangerous unauthorized access flaw.

Drop the Charges,’ Says Amnesty Ahead of Key Julian Assange Hearing

"The risk to publishers and investigative journalists around the world hangs in the balance. Should Julian Assange be sent to the U.S. and prosecuted there, global media freedoms will be on trial, too."

 by Brett Wilkins Posted on February 14, 2024

It's been on sale for less than two weeks. But it seems that many unhappy Apple customers are already returning their $3,500 Vision Pro headsets. The futuristic headset was touted as the 'ultimate entertainment device', but appears to be causing severe health issues for some users.

The Biden Administration has shown time and time again how they weaponize federal law enforcement agencies against gun owners.

A recent report by the Inspector General of the Department of Homeland Security highlighted how several DHS component agencies, including the Secret Service, bought Americans' phone location data without a court order.

The Bumblebee malware loader seemingly vanished from the internet last October, but it's back and - oddly - relying on a vintage vector to try and gain access.

First spotted in 2022 by researchers at Proofpoint – who identified it as an apparent replacement for BazarLoader – Bumblebee was originally used by high-profile ransomware groups including Russia-linked Conti.

A single packet can exhaust the processing capacity of a vulnerable DNS server, effectively disabling the machine, by exploiting a 20-plus-year-old design flaw in the DNSSEC specification.

That would make it trivial to take down a DNSSEC-validating DNS resolver that has yet to be patched, upsetting all the clients relying on that service and make it seem as though websites and apps were offline.

Microsoft has released patches to address 73 security flaws spanning its software lineup as part of its Patch Tuesday updates for February 2024, including two zero-days that have come under active exploitation.

Of the 73 vulnerabilities, 5 are rated Critical, 65 are rated Important, and three and rated Moderate in severity. This is in addition to 24 flaws that have been fixed in the Chromium-based Edge browser since the release of the January 24 Patch Tuesday updates.