Top Hackernews posts from www.bleepingcomputer.com
- Canon sued for disabling scanner when printers run out of ink (www.bleepingcomputer.com)
- Dev corrupts NPM libs 'colors' and 'faker', breaking thousands of apps (www.bleepingcomputer.com)
- YouTube tests blocking videos unless you disable ad blockers (www.bleepingcomputer.com)
- Nvidia cripples cryptocurrency mining on RTX 3080 and 3070 cards (www.bleepingcomputer.com)
- Toyota: Car location data and videos of 2M customers exposed for ten years (www.bleepingcomputer.com)
- Apple silently fixes iOS zero-day, asks bug reporter to keep quiet (www.bleepingcomputer.com)
- LastPass users warned their master passwords are compromised (www.bleepingcomputer.com)
- Microsoft is testing ads in the Windows 11 File Explorer (www.bleepingcomputer.com)
- WordPress themes, plugins backdoored in supply chain attack (www.bleepingcomputer.com)
- New acoustic attack steals data from keystrokes with 95% accuracy (www.bleepingcomputer.com)
- Okta says its GitHub account hacked, source code stolen (www.bleepingcomputer.com)
- Terrorist watchlist exposed via misconfigured Elasticsearch cluster (www.bleepingcomputer.com)
- Brave browser to start blocking annoying cookie consent banners (www.bleepingcomputer.com)
- Razer bug lets you become a Windows 10 admin by plugging in a mouse (www.bleepingcomputer.com)
- Slack's private GitHub code repositories stolen over holidays (www.bleepingcomputer.com)
- 23andMe says user data stolen in credential stuffing attack (www.bleepingcomputer.com)
- Mozilla stops Firefox fullscreen VPN ads after user outrage (www.bleepingcomputer.com)
- Microsoft sued for open-source piracy through GitHub Copilot (www.bleepingcomputer.com)
- Windows 11 KB5023778 update adds promotions to the Start menu (www.bleepingcomputer.com)
- FBI: Stolen PII and deepfakes used to apply for remote tech jobs (www.bleepingcomputer.com)
- Microsoft admits to signing rootkit malware in supply-chain fiasco (www.bleepingcomputer.com)
- Microsoft outage affects Bing, Copilot, DuckDuckGo and ChatGPT internet search (www.bleepingcomputer.com)
- NameCheap's email hacked to send Metamask, DHL phishing emails (www.bleepingcomputer.com)
- Delta Dental says data breach exposed info of 7M people (www.bleepingcomputer.com)
- Lapsus$ hackers leak 37GB of Microsoft's alleged source code (www.bleepingcomputer.com)
- Dad takes down town's internet by mistake to get his kids offline (www.bleepingcomputer.com)
- Finnish govt agency warns of unusual aircraft GPS interference (www.bleepingcomputer.com)
- GoDaddy: Hackers stole source code, installed malware in multi-year breach (www.bleepingcomputer.com)
- Malware abuses Google OAuth endpoint to 'revive' cookies, hijack accounts (www.bleepingcomputer.com)
- Microsoft is killing WordPad in Windows (www.bleepingcomputer.com)
- Finnish diplomats’ phones infected with NSO Group Pegasus spyware (www.bleepingcomputer.com)
- Critical Gitlab vulnerability let attackers take over accounts (www.bleepingcomputer.com)
- Google introduces end-to-end encryption for Gmail on the web (www.bleepingcomputer.com)
- Western Digital confirms speed crippling SN550 SSD flash change (www.bleepingcomputer.com)
- U.S. No Fly list publicly shared on a hacking forum, government investigating (www.bleepingcomputer.com)
- Okta: “We made a mistake” delaying the Lapsus$ hack disclosure (www.bleepingcomputer.com)
- Twitter confirms zero-day used to expose data of 5.4M accounts (www.bleepingcomputer.com)
- DuckDuckGo now blocks Google sign-in pop-ups on all sites (www.bleepingcomputer.com)
- Microsoft Teams outage causes connection issues, message delays (www.bleepingcomputer.com)
- LastPass users locked out due to MFA resets (www.bleepingcomputer.com)
- Google will add E2E encryption to Authenticator backups (www.bleepingcomputer.com)
- WinRAR zero-day exploited since April to hack trading accounts (www.bleepingcomputer.com)
- Haier hits Home Assistant plugin dev with takedown notice (www.bleepingcomputer.com)
- New Intel chips won't play Blu-ray disks due to SGX deprecation (www.bleepingcomputer.com)
- New Linux glibc flaw lets attackers get root on major distros (www.bleepingcomputer.com)
- Bing Chat responses infiltrated by ads pushing malware (www.bleepingcomputer.com)
- Privacy-focused search engine DuckDuckGo grew by 46% in 2021 (www.bleepingcomputer.com)
- Pixel owners report problems after installing January 2024 Google Play update (www.bleepingcomputer.com)
- New Microsoft Exchange zero-days allow RCE, data theft attacks (www.bleepingcomputer.com)
- Peloton's $3k treadmill now comes with surprise 'subscription fee' (www.bleepingcomputer.com)
- 7-Zip developer releases the first official Linux version (www.bleepingcomputer.com)
- Microsoft again bothers Chrome users with Bing popup ads in Windows (www.bleepingcomputer.com)
- Flipper Zero banned by Amazon for being a ‘card skimming device’ (www.bleepingcomputer.com)
- Cybercriminals pose as "helpful" Stack Overflow users to push malware (www.bleepingcomputer.com)
- US returns $154M in bitcoins stolen by Sony employee (www.bleepingcomputer.com)
- GitHub comments abused to push malware via Microsoft repo URLs (www.bleepingcomputer.com)
- Google pushes emergency Chrome update to fix 8th zero-day in 2022 (www.bleepingcomputer.com)
- Millions of GitHub repos likely vulnerable to RepoJacking, researchers say (www.bleepingcomputer.com)
- Rust devs push back as Serde project ships precompiled binaries (www.bleepingcomputer.com)
- Microsoft denies data breach, theft of 30M customer accounts (www.bleepingcomputer.com)
- 3M electric toothbrushes were not used in a DDoS attack (www.bleepingcomputer.com)
- Tenable CEO says Microsoft security is blatantly negligent (www.bleepingcomputer.com)
- 'everything' blocks devs from removing their own NPM packages (www.bleepingcomputer.com)
- FBI arrests man for plan to kill 70% of Internet in AWS bomb attack (www.bleepingcomputer.com)
- Cloud engineer gets 2 years for wiping ex-employer's code repos (www.bleepingcomputer.com)
- Security researchers collect awards for Tesla exploits at Pwn2Own Automotive (www.bleepingcomputer.com)
- Former telecom manager admits to doing SIM swaps for $1k (www.bleepingcomputer.com)
- Critical RCE found in popular Ghostscript open-source PDF library (www.bleepingcomputer.com)
- Study reveals Android phones constantly snoop on their users (www.bleepingcomputer.com)
- Opera sees big jump in EU users on iOS, Android after DMA update (www.bleepingcomputer.com)
- New Windows updates cause UNSUPPORTED_PROCESSOR blue screens (www.bleepingcomputer.com)
- HP rushes to fix bricked printers after faulty firmware update (www.bleepingcomputer.com)
- Hackers earn $990k for 63 zero-days exploited at Pwn2Own Toronto (www.bleepingcomputer.com)
- Google Drive flags macOS '.DS_Store' files for copyright violation (www.bleepingcomputer.com)
- Brazil seizing Flipper Zero shipments to prevent use in crime (www.bleepingcomputer.com)
- Microsoft’s Azure portal down following new claims of DDoS attacks (www.bleepingcomputer.com)
- One malicious car could trick smart traffic control systems in the US (2018) (www.bleepingcomputer.com)
- WiFi protocol flaw allows attackers to hijack network traffic (www.bleepingcomputer.com)
- Signal says there is no evidence rumored zero-day bug is real (www.bleepingcomputer.com)
- DuckDuckGo browser allows Microsoft trackers due to search agreement (www.bleepingcomputer.com)
- Criminals are mailing hacked Ledger devices to steal cryptocurrency (www.bleepingcomputer.com)
- Intel leak: 20GB of source code, chipset design and Intel Management Engine (ME) (www.bleepingcomputer.com)
- Ubiquiti users report having access to others' UniFi routers, cameras (www.bleepingcomputer.com)
- SSH keys stolen by stream of malicious PyPI and NPM packages (www.bleepingcomputer.com)
- HelloKitty ransomware rebrands, releases CD Projekt and Cisco data (www.bleepingcomputer.com)
- Microsoft support 'cracks' Windows for customer after activation fails (www.bleepingcomputer.com)
- Most loved programming language Rust sparks privacy concerns (www.bleepingcomputer.com)
- Discord will switch to temporary file links to block malware delivery (www.bleepingcomputer.com)
- Microsoft plans to kill off NTLM authentication in Windows 11 (www.bleepingcomputer.com)
- New macOS zero-day bug lets attackers run commands remotely (www.bleepingcomputer.com)
- Mozilla tests if 'Firefox/100.0' user agent breaks websites (www.bleepingcomputer.com)
- Malicious AI models on Hugging Face backdoor users' machines (www.bleepingcomputer.com)
- Tor's new WebTunnel bridges mimic HTTPS traffic to evade censorship (www.bleepingcomputer.com)
- Windows Subsystem for Linux gets new 'mirrored' network mode (www.bleepingcomputer.com)
- Apple emergency updates fix 3 new zero-days exploited in attacks (www.bleepingcomputer.com)
- Google, Microsoft can get your passwords via web browser's spellcheck (www.bleepingcomputer.com)
- Popular open source project Moq criticized for quietly collecting data (www.bleepingcomputer.com)
- GTA 5 source code reportedly leaked online a year after RockStar hack (www.bleepingcomputer.com)
- Microsoft is force installing PC Health Check in Windows 10 (www.bleepingcomputer.com)
- US Post Office phishing sites get as much traffic as the real one (www.bleepingcomputer.com)