Cybersecurity

#UK launches vulnerability research program for external experts

https://www.bleepingcomputer.com/news/security/uk-launches-vulnerability-research-program-for-external-experts/

#cybersecurity

#Episource is notifying millions of people that their #health data was stolen

https://techcrunch.com/2025/07/14/episource-is-notifying-millions-of-people-that-their-health-data-was-stolen/

#cybersecurity #privacy #DataBreach #healthcare

#Trump administration to spend $1 billion on ‘offensive’ hacking operations

https://techcrunch.com/2025/07/14/trump-administration-to-spend-1-billion-on-offensive-hacking-operations/

#cybersecurity #cyberwar #politics

#Interlock #ransomware adopts #FileFix method to deliver #malware

https://www.bleepingcomputer.com/news/security/interlock-ransomware-adopts-filefix-method-to-deliver-malware/

#cybersecurity #cybercrime

#Gigabyte motherboards vulnerable to #UEFI #malware bypassing #SecureBoot

https://www.bleepingcomputer.com/news/security/gigabyte-motherboards-vulnerable-to-uefi-malware-bypassing-secure-boot/

#cybersecurity #mobo #motherboard

Malicious #VSCode extension in #CursorIDE led to $500K #crypto theft

https://www.bleepingcomputer.com/news/security/malicious-vscode-extension-in-cursor-ide-led-to-500k-crypto-theft/

#cybersecurity

Why It's Time To Invest In #Quantum #Cybersecurity Now

https://it.slashdot.org/story/25/07/13/2152256/why-its-time-to-invest-in-quantum-cybersecurity-now

#Google#EGemini flaw hijacks email summaries for #phishing

https://www.bleepingcomputer.com/news/security/google-gemini-flaw-hijacks-email-summaries-for-phishing/'

#cybersecurity #AI #email

Hackers are exploiting critical RCE flaw in #WingFTPServer

https://www.bleepingcomputer.com/news/security/hackers-are-exploiting-critical-rce-flaw-in-wing-ftp-server/

#cybersecurity #Wing #FTP

Can an “ethical” spyware company justify providing its tech to ICE, the U.S.’s immigration enforcement arm that has been carrying out large-scale raids across the country? @Techcrunch explores:

https://flip.it/kqMETW

#Tech #TechNews #SpyWare #CyberSecurity

Exploits for pre-auth #Fortinet #FortiWeb RCE flaw released, patch now

https://www.bleepingcomputer.com/news/security/exploits-for-pre-auth-fortinet-fortiweb-rce-flaw-released-patch-now/

#cybersecurity

#WordPress #GravityForms developer hacked to push backdoored plugins

https://www.bleepingcomputer.com/news/security/wordpress-gravity-forms-developer-hacked-to-push-backdoored-plugins/

#cybersecurity

#NVIDIA shares guidance to defend #GDDR6 GPUs against #Rowhammer attacks

https://www.bleepingcomputer.com/news/security/nvidia-issues-guidance-to-defend-gddr6-gpus-against-rowhammer/

#cybersecurity #GPU

#CISA tags #CitrixBleed2 as exploited, gives agencies a day to patch

https://www.bleepingcomputer.com/news/security/cisa-tags-citrix-bleed-2-as-exploited-gives-agencies-a-day-to-patch/

#cybersecurity #Citrix

#Russia, hotbed of #cybercrime, says nyet to #EthicalHacking bill

https://www.theregister.com/2025/07/10/russia_ethical_hacking_bill/

#cybersecurity #politics

#Windows11 now uses #JScript9Legacy engine for improved security

https://www.bleepingcomputer.com/news/security/windows-11-now-uses-jscript9legacy-engine-for-improved-security/

#cybersecurity

#PerfektBlue #Bluetooth flaws impact #Mercedes, #Volkswagen, #Skoda cars

https://www.bleepingcomputer.com/news/security/perfektblue-bluetooth-flaws-impact-mercedes-volkswagen-skoda-cars/

#cybersecurity

Was the FBI’s “raw” Jeffrey Epstein prison video modified? @WIRED dives into the “ambiguities around how the video was processed may further fuel conspiracy theories about Epstein’s death.”

https://flip.it/GRlGhk

#Tech #Epstein #CyberSecurity #EpsteinFiles

Russian pro #basketball player arrested for alleged role in #ransomware attacks

https://www.bleepingcomputer.com/news/security/russian-pro-basketball-player-arrested-for-alleged-role-in-ransomware-attacks/

#cybersecurity #cybercrime #politics

"If you want a job at McDonald’s today, there’s a good chance you'll have to talk to Olivia. Olivia is not, in fact, a human being, but instead an AI chatbot that screens applicants, asks for their contact information and résumé, directs them to a personality test, and occasionally makes them “go insane” by repeatedly misunderstanding their most basic questions.

Until last week, the platform that runs the Olivia chatbot, built by artificial intelligence software firm Paradox.ai, also suffered from absurdly basic security flaws. As a result, virtually any hacker could have accessed the records of every chat Olivia had ever had with McDonald's applicants—including all the personal information they shared in those conversations—with tricks as straightforward as guessing that an administrator account's username and password was “123456."

On Wednesday, security researchers Ian Carroll and Sam Curry revealed that they found simple methods to hack into the backend of the AI chatbot platform on McHire.com, McDonald's website that many of its franchisees use to handle job applications. Carroll and Curry, hackers with a long track record of independent security testing, discovered that simple web-based vulnerabilities—including guessing one laughably weak password—allowed them to access a Paradox.ai account and query the company's databases that held every McHire user's chats with Olivia. The data appears to include as many as 64 million records, including applicants' names, email addresses, and phone numbers."

https://www.wired.com/story/mcdonalds-ai-hiring-chat-bot-paradoxai/?amp%3Bmc_eid=ceff4c8226

#CyberSecurity #AI #GenerativeAI #Chatbots #DataProtection

Four arrested in #UK over M&S, #CoOp, #Harrod cyberattacks

https://www.bleepingcomputer.com/news/security/four-arrested-in-uk-over-mands-co-op-harrod-cyberattacks/

#cybercrime #MarksAndSpencer #cybersecurity

Browser extensions turn nearly 1 million browsers into website-scraping bots

https://arstechnica.com/security/2025/07/browser-extensions-turn-nearly-1-million-browsers-into-website-scraping-bots/

#cybersecurity

#AMD warns of new #Meltdown, #Spectre-like bugs affecting CPUs

https://www.theregister.com/2025/07/09/amd_tsa_side_channel/

#cybersecurity

#McDonald’s #AI Hiring Bot Exposed Millions of Applicants’ Data to Hackers Who Tried the Password ‘123456’

https://www.wired.com/story/mcdonalds-ai-hiring-chat-bot-paradoxai/

#cybersecurity

#JackDorsey says his ‘secure’ new #Bitchat app has not been tested for security

https://techcrunch.com/2025/07/09/jack-dorsey-says-his-secure-new-bitchat-app-has-not-been-tested-for-security/

#cybersecurity