This week, Wired Reported an alarming incident The original warships mimicked their position By some unknown villain. Over the past few months, dozens of ships have been seen entering the disputed waters when they were actually hundreds of miles away. The misinformation comes in the form of simulated AIS tracking data, which can be seen on integration sites like MarineTraffic and AISHub. It’s not clear who is responsible, or exactly how they are pulling it off – but it does hold a dangerous match of powder kegs in Crimea and elsewhere.
Speaking of controversy, this week a pair of researchers released a tool around the world that crawls every website for low-hanging fruit vulnerabilities মনে think of SQL injection and cross-site scripting এবং and Makes the results not only universal, but searchable. This is actually the second iteration of the system, known as punkspider; They shut down the first one after numerous complaints to their hosting provider. Many of the same criticisms remain at this time, leaving the long-term fate of Punkspider uncertain.
Apple advertises itself as such The most privacy-friendly major technology company Is out, and it’s done Lots to bring back that fame. But we saw it once this week A big step towards consumer privacy that the company is not deciding: Implementation of a global privacy control that will allow Safari and iOS users to automatically stop most tracking.
Our colleagues in the UK cam girl who goes by Coconut Kitty Show yourself young on-stream using digital effects. In many ways, this could be the future of adult content, which could be a potential response beyond this single fan account.
And there are more. We do not cover all the security news of WIRED in depth every week. Click on the title to read the full story, and stay safe there.
A joint consultation of law enforcement agencies in the United States, the United Kingdom and Australia calculated the 300 most exploited vulnerabilities this week. Perhaps not surprisingly, the list contains errors that were revealed many years ago; There is a patch on everything in the list for which it wants to install. But we did as well Writing about Repeatedly, A lot Companies are slow to slow down updates For all intents and purposes, it is a matter of resources, knowledge, or the inability to adjust the time often needed for software refresh. Some of these vulnerabilities may include remote code execution – you don’t want it – hopefully they will start to give more priority to patching.
An app called Doxy has introduced itself as a dice-rolling game, but in fact anyone who downloaded it has access to it after entering a passcode in the search bar on Netflix, Amazon Prime and many more. Apple has downloaded the app from the App Store After asking Gizmodo, But you probably shouldn’t have installed it; It was truncated by ads, and may have mishandled your data. After all, you better pay for the subscription.
In early July, Iran’s train system was the victim of a cyber attack that looked much like a wide-ranging troll; The hackers put messages on the screen advising passengers to call Supreme Leader Khamenei’s office for help. A closer inspection of security firm SentinelOn, however, shows that the malware was actually a wiper, designed to destroy data rather than just hold hostages. The malware that researchers call a meteor appears to have come from a new threat actor, and lacks a certain amount of polish. Lucky for those whom they decide to target next.
Last week, Amnesty International and more than a dozen other organizations released a report on how the NSO group misused spyware to spy on journalists and political rivals. Shortly afterwards, the Israeli government visited the notorious surveillance dealer’s office in that country. The NSO group has repeatedly and forcefully denied Amnesty International’s report, but domestic pressure appears to have increased after the name was added to a list of potential spyware targets, such as French President Emmanuel Macron.
The judiciary revealed on Friday that Cozy Bear, the hackers behind it SolarWinds Hack And other sophisticated espionage campaigns, breaking at least one email account in the U.S. Attorney’s Office last year. Eighty percent of the email accounts used in the four New York-based U.S. attorneys’ offices were compromised. The campaign probably gave them access to all kinds of sensitive information, which the Russian government must use in a responsible manner.
More great cable stories