Security Researcher Hacks iPhone 15's USB-C Controller, Exposing New Vulnerabilities
A groundbreaking hack of Apple's ACE3 USB-C controller in iPhone 15 devices has revealed potential security implications. Researcher Thomas Roth successfully achieved code execution and ROM access through advanced techniques, laying groundwork for future security research.
Security Flaw: Chrome Extensions Exploit Translation System to Manipulate Search Rankings
Hundreds of malicious Chrome extensions are gaming the Web Store's search results by abusing language translation features. Security researcher Wladimir Palant uncovered 920 extensions exploiting this vulnerability, raising concerns about Google's commitment to store security.
Cisco Confirms Second Data Leak from DevHub Platform
Cisco validates the authenticity of 4GB of leaked data from their DevHub developer platform, marking the second breach connected to an October 2024 security incident. The company maintains its core systems remain secure despite the exposure of product source code and development resources.
Massive VW Data Breach Exposes Location Data of 800,000 Electric Vehicles
A critical security lapse by Volkswagen's Cariad subsidiary left sensitive location data of 800,000 EVs exposed on an unsecured cloud server for months. The breach enabled detailed tracking of vehicle owners' movements across multiple European countries, including German politicians.
FTC Investigates Microsoft's Federal Cybersecurity Contracts Over Antitrust Concerns
The FTC has launched a probe into Microsoft's cybersecurity dealings with federal agencies following the 2020 SolarWinds attack, examining potential antitrust violations. The investigation focuses on how Microsoft's free security trials allegedly led to expensive subscriptions and vendor lock-in across government systems.
OpenAI Pioneers 'Deliberative Alignment' for Enhanced AI Safety
OpenAI introduces groundbreaking AI safety approach teaching models to actively consider safety protocols during decision-making. The new 'deliberative alignment' technique enables AI to internally reference guidelines while processing requests, showing promising results in preventing harmful outputs.
Critical Chrome Security Update: Google Warns 2.5 Billion Users of New Vulnerabilities
Google releases urgent security patches for Chrome browser after discovering four high-severity vulnerabilities affecting billions of users worldwide. The update addresses flaws in V8 Javascript engine and browser compositing functions, with bounties totaling $75,000 awarded to security researchers.
US Government Considers TP-Link Router Ban Over National Security Concerns
Federal authorities may ban TP-Link routers by 2025 due to cybersecurity concerns and potential state-sponsored attack vulnerabilities. The ban could greatly impact US consumers and businesses, as TP-Link controls 65% of the domestic router market.
TP-Link Under Scrutiny: US Government Considers Router Ban Over Security Risks
Chinese networking giant TP-Link faces potential US sales ban amid national security investigations by multiple federal agencies. The company's dominant 65% market share and alleged security vulnerabilities have drawn scrutiny, particularly after Microsoft's discovery of compromised devices in a Chinese hacking network.
LastPass Security Breach Leads to $45M Cryptocurrency Heist
A series of cryptocurrency thefts linked to the 2022 LastPass security breach has resulted in over $45 million stolen from users' digital wallets. Security experts warn LastPass users who stored crypto information to immediately transfer assets as hackers continue targeting victims.