Researchers extract data from air-gapped PC by monitoring RAM's electromagnetic radiation
Effective up to 23 feet away
Newly discovered flaw makes some YubiKeys vulnerable to cloning
All YubiKey models running firmware prior to version 5.7 are affected
Zyxel issues patches for nine critical vulnerabilities affecting over 50 access points and routers
Admins: Update your Zyxel networking firmware ASAP
White House declares BGP security issues a national priority – BGP handles routing for the entire internet
The "glue" protocol that sticks internet's networks together
A Dangerous Network: The Border Gateway Protocol has been the primary routing technology for the internet for at least three decades. Like other fundamental internet protocols developed in the 1980s, BGP was not originally designed with security in mind – and it shows.
China-linked hackers suspected of exploiting zero-day flaw in software used by ISPs
Attacks have been ongoing since June
RFID cards could turn into a global security mess after discovery of hardware backdoor
WTF?! Chinese-made chips used in popular contactless cards contain hardware backdoors that are easy to exploit. These chips are compatible with the proprietary Mifare protocol developed by Philips spin-off NXP Semiconductors and are inherently "intrinsically broken," regardless of the card's brand.
Hacker faces 81-month prison sentence for faking his death to avoid child support payments
Deadbeat dad was also selling compromised data on the dark web and filling out bank forms using other people's identities
App found buried in Google Pixel devices can be exploited by hackers
The software can't even be uninstalled by users
Ransomware threats are on the rise, with LockBit 3.0 leading global attacks
That's despite the group's takedown earlier this year
Elite racing bikes could become the oddest victim of hacking
Researchers expose alarming vulnerabilities in wireless shifting systems
Massive data breach compromises billions of personal records around the world
Hacker posts 2.7 billion records from National Public Data
What just happened? A colossal data breach has surfaced, revealing nearly 2.7 billion personal information records purportedly encompassing every individual in Canada, the United Kingdom, and the United States. This breach stands out due to the vast amount of data exposed, potentially marking it as one of the largest in history.
Ecovacs robot vacuums can be hijacked remotely to spy on you
Hacked machines can even propagate the attack to other nearby robots
A husband's quest for justice unmasks a global smishing operation
Thousands owe their financial security to his efforts
Home security specialist ADT discloses data breach in SEC filing
Customer data including physical addresses and phone numbers was compromised
Check out the HackberryPi Zero, a Raspberry Pi-based hacking tool
A fun portable Linux toy with a high price
Hackers exploited an ISP to launch sophisticated DNS poisoning attack against customers
It happened last year, but DNS attacks continue to be a major concern
This $500 laser hacking device zaps chips to expose firmware secrets
Laser fault injection made open source and affordable
A US security firm was tricked into hiring a North Korean hacker who installed malware
He was uncovered before any damage could be done
CrowdStrike also broke Debian and Rocky Linux earlier this year – hackers are taking advantage of Friday's chaos
Can you trust CrowdStrike's software update procedures moving forward?
Traffic light vulnerability could let hackers cause massive gridlocks, study finds
Bad actors can exploit old hardware to gain complete control over traffic lights
Cellebrite tools can't crack iPhones running iOS 17.4 or newer; most Android devices vulnerable
In brief: Apple and CEO Tim Cook will likely be feeling quite smug following a report that Israeli company Cellebrite's widely used phone-unlocking tools are ineffective against up-to-date iPhones. On the other hand, Cellebrite's kit can break into the majority of Android phones.
AT&T discloses another massive data breach containing phone records of "nearly all" its customers
The attack occured in April making it back-to-back with the breach in March that exposed 73 million records
A record 10 billion passwords were just posted to a popular hacking forum
Hackers can do a lot of damage with this database
Microsoft patents a system that encrypts documents so you can read them in public without being visually hacked
There are other ways to prevent visual hacking, but they all have limitations
Ransomware gang freely hands over decryption key after Indonesia attack, requests public donations as thanks
Don't be ungrateful!