T-Mobile recently admitted yet another data breach. This time it compromised 37 million customers. The attack used – or abused – one of T-Mobile’s APIs. Dedicated readers probably remember that I warned about the abuse of APIs last week. It is a growing problem because companies are not paying enough attention to API security. The […]
Continue reading → [DISPLAY_ACURAX_ICONS]Google is very useful – we all know it. But useful for whom? Apparently hackers are setting up fake websites for popular free and open source software to promote downloads through ads and search engine marketing in Google search results. What the hackers do, among other things, is create fake domains that look like the […]
Continue reading → [DISPLAY_ACURAX_ICONS]Dr. Suzanne Schwartz of the Food and Drug Administration, says the new cybersecurity requirements for medical devices in the $1.7 trillion spending bill Biden recently signed is a game changer. Up until now, if the manufacturer patched a device, or it a hospital patched the operating system of one of these devices, the device was […]
Continue reading → [DISPLAY_ACURAX_ICONS]What Could Possibly Go Wrong – Cali’s Digital License Plates Hacked A team of security researchers managed to gain “super administrative access” into Reviver, the company behind California’s new digital license plates which launched last year. That access allowed them to track the physical GPS location of all Reviver customers and change a section of […]
Continue reading → [DISPLAY_ACURAX_ICONS]ChatGPT is the new AI that has some pretty cool functions and which Microsoft is negotiating to invest in to the tune of $10 billion. It can write college term papers for students, for example. It does so good a job that professors are concerned that they won’t be able to detect it and the […]
Continue reading → [DISPLAY_ACURAX_ICONS]Well, the first answer is that it is not going to help Rackspace defend itself against the lawsuits that it is facing for the ransomware attack. Rackspace now admits that it decided to hold off installing a patch for a server side request forgery vulnerability in Exchange (CVE-2022-41080) that Microsoft patched the month before the […]
Continue reading → [DISPLAY_ACURAX_ICONS]