Tag

Technology Security

All articles tagged with #technology security

technology-security21 days ago•2 min saved

Dirty Frag: Early Disclosure Lets Linux Root on Major Distros

A Linux local privilege escalation named 'Dirty Frag' was publicly disclosed early, enabling local users to obtain root by exploiting decryption fast paths in the esp4, esp6, and rxrpc kernel code; with no CVEs or patches yet due to the embargo break, a workaround exists to disable the affected modules via: sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2>/dev/null; true"; Alma Linux has released early patches for testing, and oss-security has more details; this situation means risk on most major distros until patches are issued.

via Phoronix|

#disclosure #kernel #linux

world7 months ago•76 min saved

Netherlands Takes Control of Chinese-Owned Chipmaker Nexperia

The Dutch government has intervened to take control of Chinese-owned chipmaker Nexperia due to concerns over technological knowledge leakage and economic security, marking a rare use of a law from 1952 to protect strategic industries in Europe.

via Hacker News|

#dutch-government #european-economy #foreign-investment

world8 months ago•3 min saved

Trump to Sign TikTok Deal with Oracle Oversight on Thursday

President Trump is expected to sign a deal allowing the sale of TikTok to American investors, with ByteDance holding less than 20%, to address national security concerns and comply with U.S. law, including data storage in the U.S. and algorithm oversight.

via NBC News|

#deal #technology-security #tiktok

world9 months ago•2 min saved

Nvidia Responds Briefly to China

Nvidia is caught in a geopolitical struggle as it faces accusations from Chinese state media that its chips pose a security threat, following a deal with the US to sell chips in China that involves a controversial revenue-sharing agreement. The company denies any security risks, emphasizing the importance of trust in its technology amidst tensions between the US and China.

via Gizmodo|

#ai-chips #china #geopolitics

technology-security2 years ago•4 min saved

"Unpatchable Apple Chip Flaw Exposes Encryption Keys"

A flaw in Apple's M-series chips allows attackers to exploit the data memory-dependent prefetcher to reveal encryption keys, posing a virtually unpatchable threat. The US warns of potential cyberattacks on water systems by hackers from Iran and China, while a new Russian wiper malware, AcidPour, threatens communication networks. Additionally, China-linked hacker group Earth Krahang has targeted organizations worldwide, breaching 70 entities, including 48 government organizations.

via WIRED|

#apple #cybersecurity #encryption

technology-security2 years ago•2 min saved

"Wyze Customers Exposed to Home Surveillance Glitch"

WYZE customers report being able to see inside other people's homes due to a glitch in the home security camera system, with one woman in South Bend, Indiana, witnessing footage from a different time zone. The company's office was found nearly empty, with no one available to address the issue. WYZE has acknowledged disruptions and login difficulties, and disabled the events tab in the app to investigate the security issue. Customers are concerned about the breach's implications for their privacy and security.

via KIRO Seattle|

#customer-data #home-cameras #privacy

technology-security2 years ago•3 min saved

"26 Billion Records Stolen: The Mother of All Data Breaches"

A massive data breach, dubbed the "Mother of All Breaches," has exposed 26 billion records from popular sites like LinkedIn, Twitter, and more, making it the largest breach in history. The compromised data includes sensitive information, posing a significant risk for identity theft and cyberattacks. While the source of the breach remains unknown, experts advise users to be vigilant against phishing scams, change their passwords, and enable two-factor authentication for all accounts.

via New York Post |

#cybersecurity #data-breach #linkedin