lemmydev2

Check Point has discovered over 1000 suspicious domains registered in the run-up to Amazon Prime Day

A significant vulnerability affecting modern Linux distributions that allows attackers with brief physical access to bypass Secure Boot protections through initramfs manipulation.  The attack exploits debug shells accessible during boot failures, enabling persistent malware injection that survives system reboots and maintains access even after users enter correct passwords for encrypted partitions. key Takeaways1. Attackers with […] The post Linux Boot Vulnerability Allows Bypass of Secure Boot Protections on Modern Linux Systems appeared first on Cyber Security News.

A clash between criminal ransomware groups could result in victims being extorted twice.

The Call of Duty team confirmed that the PC edition of WWII has been taken offline following "reports of an issue."

Lila Shroff / The Atlantic: Gemini referencing real-life moments when prompted to write a birthday letter shows how effectively Google is leveraging user data to craft personalized content  —  Google is ushering in an era of custom chatbots.  —  In May, I asked Google's chatbot, Gemini, to write a birthday letter to my best friend.

“C mistakes are vulnerabilities that were caused by a mistake that ‘probably would not have been possible’ had we not been using C for curl. Manually assessed for each case.” Comments

A significant security vulnerability has been discovered in Lenovo’s preloaded Windows operating systems, where a writable file in the Windows directory enables attackers to bypass Microsoft’s AppLocker security framework.  The issue affects all variants of Lenovo machines running default Windows installations and poses serious implications for enterprise security environments. The vulnerability centers around the MFGSTAT.zip […] The post Writable File in Lenovo’s Windows Directory Enables a Stealthy AppLocker Bypass appeared first on Cyber Security News.

Instagram has adopted an unprecedented approach to web security by implementing daily rotation of TLS certificates that maintain validity periods of just one week, according to a recent technical analysis.  This practice represents a significant departure from industry standards, where certificates typically remain valid for 90 days or longer, suggesting a strategic shift toward enhanced […] The post Instagram Started Using 1-Week Validity TLS Certificates and Changes Them Daily appeared first on Cyber Security News.

France 24: The Colombian navy says it has seized an unmanned narco-submarine that was equipped with a Starlink terminal, enabling the sub to be controlled remotely  —  The Colombian navy on Wednesday seized its first unmanned narco-submarine, equipped with a Starlink antenna, off the Caribbean coast.

An ongoing outage at IT giant Ingram Micro is caused by a SafePay ransomware attack that led to the shutdown of internal systems, BleepingComputer has learned. [...]

EFI from cables is something every ham loves to hate. What if you modulated, that, though, using an ordinary cable as an antenna? If you used something ubiquitous like a …read more

At PyCon US 2025, attendees were in for a treat: activist/blogger/science fiction author Cory Doctorow‘s keynote on the dangers of The post Cory Doctorow Reveals How He’d Fix Big Tech’s Domination appeared first on The New Stack.