List of articles which I have no time to read (as of 11 Apr 2023)
Subject: List of articles which I have no time to read (as of 11 Apr 2023)
[001] How much to infect Android phones via Google Play store? How about $20k
Link: https://www.theregister.com/2023/04/10/kaspersky_google_play_malicious_apps/
[002] A New Weaponized Browser Extension Bypass Two-factor Authentication
Link: https://gbhackers.com/weaponized-browser-extension/
[003] Steven Lim, Kurt Tay, Turritopsis Dohrnii who u like most?
Link: https://forums.hardwarezone.com.sg/threads/steven-lim-kurt-tay-turritopsis-dohrnii-who-u-like-most.6752539/
[004] Taiwanese PC Company MSI Falls Victim to Ransomware Attack
Link: https://thehackernews.com/2023/04/taiwanese-pc-company-msi-falls-victim.html
[005] MSI Confirms Cyberattack, Advises Caution With Firmware
Link: https://www.tomshardware.com/news/msi-cyberattack-firmware-updates
[006] Apple Ships Urgent iOS Patch for Newly Exploited Zero-Days
Link: https://www.securityweek.com/apple-ships-urgent-ios-patch-for-newly-exploited-zero-days/
[007] Rust Support Is Being Worked On For The Linux Kernel's V4L2/Media Subsystem
Link: https://www.phoronix.com/news/Rust-V4L2-Linux-Patches
[008] MSI hit in cyberattack, warns against installing knock-off firmware
Link: https://www.theregister.com/2023/04/07/msi_cyberattack_bios/
[009] Android phones vulnerable to remote hacking — update right now
Link: https://www.tomsguide.com/news/android-system-flaws-can-be-remotely-exploited-by-hackers-install-the-latest-updates-now
[010] Log4j bug abused in new ‘proxyjacking’ attacks to resell bandwidth, abuse enterprise cloud
Link: https://www.scmagazine.com/news/malware/log4j-bug-proxyjacking-attacks-bandwidth-cloud
[011] Defense Department, FBI detain innocent person in hotel in training exercise gone wrong
Link: https://abcnews.go.com/US/defense-department-fbi-detain-innocent-person-hotel-training/story?id=98389713
[012] Singapore pushes greater action against ransomware gangs after devastating Optus data hack
Link: https://www.abc.net.au/news/2023-04-06/optus-hack-singapore-communications-minister-coordination/102193108
[013] FBI seizes Genesis Market, a notorious hacker marketplace for stolen logins
Link: https://techcrunch.com/2023/04/05/fbi-genesis-market-seized-stolen-logins/
[014] Zstd 1.5.5 Released With Corruption Fix, Improved Performance In Some Scenarios
Link: https://www.phoronix.com/news/Zstd-1.5.5
[015] QNAP Zero-Days Leave 80K Devices Vulnerable to Cyberattack
Link: https://www.darkreading.com/vulnerabilities-threats/qnap-zero-days-80k-devices-vulnerable-cyberattack
[016] Slint 1.0 Released As Rust-Focused Graphical Toolkit
Link: https://www.phoronix.com/news/Slint-1.0-Released
[017] WiFi protocol flaw allows attackers to hijack network traffic
Link: https://www.bleepingcomputer.com/news/security/wifi-protocol-flaw-allows-attackers-to-hijack-network-traffic/
[018] Researchers warn of Wi-Fi security flaw affecting iOS, Android, Linux
Link: https://www.computerworld.com/article/3692434/researchers-warn-of-wi-fi-security-flaw-affecting-ios-android-linux.html
[019] Google finds more Android, iOS zero-days used to install spyware
Link: https://www.bleepingcomputer.com/news/security/google-finds-more-android-ios-zero-days-used-to-install-spyware/
[020] 15 million public-facing services vulnerable to CISA KEV flaws
Link: https://www.bleepingcomputer.com/news/security/15-million-public-facing-services-vulnerable-to-cisa-kev-flaws/
[021] New Wi-Fi Protocol Security Flaw Affecting Linux, Android and iOS Devices
Link: https://thehackernews.com/2023/03/new-wi-fi-protocol-security-flaw.html
[022] ChatGPT Data Breach Confirmed as Security Firm Warns of Vulnerable Component Exploitation
Link: https://www.securityweek.com/chatgpt-data-breach-confirmed-as-security-firm-warns-of-vulnerable-component-exploitation/
[023] 8 Immutable Linux Distributions for Those Looking to Embrace the Future
Link: https://itsfoss.com/immutable-linux-distros/
[024] 3 reasons my Linux team uses Penpot
Link: https://opensource.com/article/23/3/linux-penpot
[025] Europol Warns That Hackers Use ChatGPT to Conduct Cyber Attacks
Link: https://cybersecuritynews.com/hackers-use-chatgpt-to-conduct-cyber-attacks/
[026] Ubuntu Cinnamon becomes an official flavor, making Linux Mint obsolete
Link: https://betanews.com/2023/03/28/ubuntu-cinnamon-official-flavor/
[027] Ex-actress Melissa Faith Yeo had to sell Toa Payoh ritual murders HDB flat & then found out its history
Link: https://mothership.sg/2022/09/melissa-faith-yeo-toa-payoh-flat/
[028] A new Android botnet trojan is out for your banking data
Link: https://www.androidpolice.com/android-botnet-trojan-steal-banking-data/
[029] Linux Kernel Vulnerabilities in Ubuntu Let Hackers Launch DOS Attack & Execute Arbitrary Code
Link: https://cybersecuritynews.com/linux-kernel-vulnerabilities/
[030] Bodhi Linux can make an old computer feel brand new
Link: https://www.zdnet.com/article/bodhi-linux-can-make-an-old-computer-feel-brand-new/
[031] OBS Studio Lands AV1 & HEVC RTMP Streaming Support
Link: https://www.phoronix.com/news/OBS-Studio-AV1-HEVC-RTMP
[032] blendOS Aims to Replace All Linux Distributions
Link: https://news.itsfoss.com/blendos/
[033] Warning to millions of Google Chrome users after ‘high’ risk bugs exposed
Link: https://7news.com.au/technology/warning-to-millions-of-google-chrome-users-after-high-risk-bugs-exposed-c-10163785
[034] Hackers on Edge as FBI Reportedly Gains Access to BreachForums Database
Link: https://www.pcmag.com/news/hackers-on-edge-as-fbi-reportedly-gains-access-to-breachforums-database
[035] How to share folders across your network from Fedora Linux
Link: https://www.zdnet.com/article/how-to-share-folders-across-your-network-from-fedora-linux/
[036] Intel Arc Graphics Show Good Potential For Linux Workstation OpenGL Performance
Link: https://www.phoronix.com/review/intel-arc-graphics-ws
[037] FBI confirms access to Breached cybercrime forum database
Link: https://www.bleepingcomputer.com/news/security/fbi-confirms-access-to-breached-cybercrime-forum-database/
[038] BreachForums shuts down ... but the RaidForums cybercrime universe will likely spawn a trilogy
Link: https://www.theregister.com/2023/03/22/breachforums_shut_down/
[039] U.S. and Canada Reach an Agreement on Diverting Asylum Seekers
Link: https://www.nytimes.com/2023/03/23/us/politics/us-canada-asylum-seekers.html
[040] Malware creator who compromised 10,000 computers arrested
Link: https://www.malwarebytes.com/blog/news/2023/03/creator-of-rat-disguised-as-fake-game-application-arrested
[041] Curl, the URL fetcher that can, marks 25 years of transfers
Link: https://www.theregister.com/2023/03/21/curl_project_25/
[042] “Acropalypse” Android screenshot bug turns into a 0-day Windows vulnerability
Link: https://arstechnica.com/information-technology/2023/03/windows-10-and-11-get-their-own-version-of-the-acropalypse-screenshot-bug/
[043] Did the ancient Chinese call India as Tianzhu? Why?
Link: https://www.quora.com/Did-the-ancient-Chinese-call-India-as-Tianzhu-Why
[044] Hackers drain bitcoin ATMs of $1.5 million by exploiting 0-day bug
Link: https://arstechnica.com/information-technology/2023/03/hackers-drain-bitcoin-atms-of-1-5-million-by-exploiting-0-day-bug/
[045] Fedora 38 beta has arrived and it heralds a spectacular upcoming release
Link: https://www.zdnet.com/article/fedora-38-beta-has-arrived-and-it-heralds-a-spectacular-upcoming-release/
[046] AWS delivers a – rather late – major release of its homebrew Linux distribution
Link: https://www.theregister.com/2023/03/20/aws_delivers_a_rather_late/
[047] Latitude customers are furious: some have had data hacked before through Medibank and Optus
Link: https://www.abc.net.au/news/2023-03-18/latitude-financial-customers-furious-over-data-breach/102112474
[048] U.S Federal Agency Hacked – Attackers Exploited Telerik Vulnerability in IIS Server
Link: https://cybersecuritynews.com/u-s-federal-us-federal-agency-hacked/
[049] UNIX co-creator Ken Thompson is a… what user now?
Link: https://www.theregister.com/2023/03/17/ken_thompson_is_a_maccie/
[050] Debian 12 "Bookworm" Enters Its Hard Freeze
Link: https://www.phoronix.com/news/Debian-12-Hard-Freeze
[051] Qt 6.4.3 Released With 300+ Fixes
Link: https://www.phoronix.com/news/Qt-6.4.3-Released
[052] Intel Thunder Bay Is Officially Canceled, Linux Driver Code To Be Removed
Link: https://www.phoronix.com/news/Intel-Thunder-Bay-Cancelled
[053] Don’t use autofill on your password manager—especially if it’s Bitwarden
Link: https://www.pcworld.com/article/1656351/dont-use-autofill-on-your-password-manager-especially-if-its-bitwarden.html
[054] Ubuntu Lunar Lobster could be the surprise hit of 2023
Link: https://www.zdnet.com/article/ubuntu-lunar-lobster-could-be-the-surprise-hit-of-2023/
[055] Hackers Lure Cybersecurity Researchers With Fake LinkedIn Recruiter Profiles
Link: https://www.darkreading.com/application-security/north-korean-hackers-targeting-security-researchers
[056] Fortinet Finds Zero-Day Exploit in Government Attacks After Devices Detect Integrity Breach
Link: https://www.securityweek.com/fortinet-finds-zero-day-exploit-in-government-attacks-after-devices-detect-integrity-breach/
[057] HALBORN DISCOVERS ZERO-DAY IMPACTING DOGECOIN AND 280+ NETWORKS
Link: https://www.halborn.com/blog/post/halborn-discovers-zero-day-impacting-dogecoin-and-280-networks
[058] Fortinet: New FortiOS bug used as zero-day to attack govt networks
Link: https://www.bleepingcomputer.com/news/security/fortinet-new-fortios-bug-used-as-zero-day-to-attack-govt-networks/
[059] Linux 6.4 To Remove Old Workaround For Running On Very Outdated Distributions
Link: https://www.phoronix.com/news/Linux-6.4-Drop-Old-Sysfs-Layout
[060] Record Breaking DDoS Attack – 158.2 Million Packets Per Second
Link: https://gbhackers.com/record-breaking-ddos-attack-on-asia/
[061] CISA warns of critical VMware RCE flaw exploited in attacks
Link: https://www.bleepingcomputer.com/news/security/cisa-warns-of-critical-vmware-rce-flaw-exploited-in-attacks/
[062] Fortinet warns of new critical unauthenticated RCE vulnerability
Link: https://www.bleepingcomputer.com/news/security/fortinet-warns-of-new-critical-unauthenticated-rce-vulnerability/
[063] Linux 6.2.4 & 6.1.17 Released To Fix An Easy-To-Trigger Kernel Oops
Link: https://www.phoronix.com/news/Linux-6.2.4-6.1.17-Released
[064] VMware Strikes Gold at 2023 Cybersecurity Excellence Awards
Link: https://news.vmware.com/security/vmware-strikes-gold-at-2023-cybersecurity-excellence-awards
[065] Malware infecting widely used security appliance survives firmware updates
Link: https://arstechnica.com/information-technology/2023/03/malware-infecting-widely-used-security-appliance-survives-firmware-updates/
[066] Linux 6.4 Slated To Start Removing Old, Unused & Unmaintained PCMCIA Drivers
Link: https://www.phoronix.com/news/Linux-6.4-PCMCIA-Char-Dropping
[067] How the FBI proved a remote admin tool was actually malware
Link: https://techcrunch.com/2023/03/09/how-the-fbi-proved-a-remote-admin-tool-was-actually-malware/
[068] Hackers Compromised Two Large Data Centers in Asia and Leaked Major Tech Giants’ Login Credentials
Link: https://www.cpomagazine.com/cyber-security/hackers-compromised-two-large-data-centers-in-asia-and-leaked-major-tech-giants-login-credentials/
[069] Exploitation of Critical Vulnerability in End-of-Life VMware Product Ongoing
Link: https://www.securityweek.com/exploitation-of-critical-vulnerability-in-end-of-life-vmware-product-ongoing/
[070] New Critical Flaw in FortiOS and FortiProxy Could Give Hackers Remote Access
Link: https://thehackernews.com/2023/03/new-critical-flaw-in-fortios-and.html
[071] Malaysia’s former PM Muhyiddin Yassin says graft charges are trumped up and an ‘ill-intentioned ploy’
Link: https://www.scmp.com/week-asia/politics/article/3212908/malaysian-ex-pm-muhyiddin-yassin-be-charged-corruption
[072] Billions of PCs and other devices vulnerable to newly discovered TPM 2.0 flaws
Link: https://www.tomsguide.com/news/billions-of-pcs-and-other-devices-vulnerable-to-newly-discovered-tpm-20-flaws
[073] Lee Hsien Yang, wife Lee Suet Fern under police investigation for lying in judicial proceedings about Lee Kuan Yew's will
Link: https://www.channelnewsasia.com/singapore/lee-hsien-yang-wife-suet-fern-police-investigation-lying-judicial-proceedings-kuan-yew-will-3318666
[074] The FBI Just Admitted It Bought US Location Data
Link: https://www.wired.com/story/fbi-purchase-location-data-wray-senate/
[075] LastPass Hack: Engineer's Failure to Update Plex Software Led to Massive Data Breach
Link: https://thehackernews.com/2023/03/lastpass-hack-engineers-failure-to.html
[076] Billion Devices at Risk: Two Buffer Overflow Flaws Found in TPM 2.0 Specification
Link: https://www.blackhatethicalhacking.com/news/billion-devices-at-risk-two-buffer-overflow-flaws-found-in-tpm-2-0-specification/
[077] Acer Data Breach: Hacker Claims to Sell 160GB Trove of Stolen Data
Link: https://www.hackread.com/acer-data-breach-hacker-sell-data/
[078] FortiGate Port Forwarding
Link: https://www.petenetlive.com/kb/article/0001742
[079] Top 8 Ways to Fix Camera Lag on Android
Link: https://www.guidingtech.com/top-ways-to-fix-camera-lag-on-android/
[080] Threat actors are using advanced malware to backdoor business-grade routers
Link: https://arstechnica.com/information-technology/2023/03/threat-actors-are-using-advanced-malware-to-backdoor-business-grade-routers/
[081] US nuclear bases to get security networking upgrade from Persistent
Link: https://www.c4isrnet.com/industry/2023/03/06/us-nuclear-bases-to-get-security-networking-upgrade-from-persistent/
[082] Chinese hackers use new custom backdoor to evade detection
Link: https://www.bleepingcomputer.com/news/security/chinese-hackers-use-new-custom-backdoor-to-evade-detection/
[083] LastPass Employee Could've Prevented Hack With a Software Update
Link: https://www.pcmag.com/news/lastpass-employee-couldve-prevented-hack-with-a-software-update
[084] Linux desktop leaders unite behind Flathub app store. Here's why
Link: https://www.zdnet.com/article/linux-desktop-leaders-unite-behind-flathub-app-store-heres-why/
[085] Lee Hsien Yang would consider running for S'pore President: Bloomberg
Link: https://mothership.sg/2023/03/lee-hsien-yang-consider-president-bloomberg/
[086] Booking.com's OAuth Implementation Allows Full Account Takeover
Link: https://www.darkreading.com/vulnerabilities-threats/booking-com-oauth-implementation-full-account-takeover
[087] New Flaws in TPM 2.0 Library Pose Threat to Billions of IoT and Enterprise Devices
Link: https://thehackernews.com/2023/03/new-flaws-in-tpm-20-library-pose-threat.html
[088] CISA: ZK Java Framework RCE Flaw Under Active Exploit
Link: https://www.darkreading.com/risk/cisa-zk-java-framework-rce-flaw-under-active-exploit
[089] Hackers Exploit Containerized Environments to Steal Proprietary Data and Software
Link: https://thehackernews.com/2023/03/hackers-exploit-containerized.html
[090] Linux's VGEM Kernel Driver Being Rewritten In Rust
Link: https://www.phoronix.com/news/Linux-VGEM-Rust
[091] Lee Hsien Yang & wife investigated for lying in judicial proceedings, both left S'pore before meeting police
Link: https://mothership.sg/2023/03/lee-hsien-yang-lee-suet-fern-leave-singapore/
[092] A Top LastPass Engineer's Home PC Got Pwned by a Hacker's Keylogger
Link: https://gizmodo.com/lastpass-data-breach-cybercriminal-cybersecurity-hacker-1850169784
[093] CISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability
Link: https://thehackernews.com/2023/02/cisa-issues-warning-on-active.html
[094] S$16,000 of luxury bags & treasured items ruined by water in AMK storage unit, company offers S$2,500
Link: https://mothership.sg/2023/02/storage-unit-water-leak-compensation/
[095] Deserialized web security roundup: Twitter 2FA backlash, GoDaddy suffers years-long attack campaign, and XSS Hunter adds e2e encryption
Link: https://portswigger.net/daily-swig/deserialized-web-security-roundup-twitter-2fa-backlash-godaddy-suffers-years-long-attack-campaign-and-xss-hunter-adds-e2e-encryption
[096] Raspberry Pi OS Update Adds New Touchscreen Driver
Link: https://www.omglinux.com/raspberry-pi-os-feb-update/
[097] Popular IBM file transfer tool vulnerable to cyberattacks, CISA says
Link: https://therecord.media/ibm-aspera-faspex-bug-cisa-known-vulnerability-list
[098] OWASP Top 10 for Docker and Kubernetes Security
Link: https://coursevania.com/courses/owasp-top-10-for-docker-and-kubernetes-security/
[099] China’s cybersecurity sector advised to build strategically superior capability to deal with suppression of hegemonic powers: CPPCC member
Link: https://www.globaltimes.cn/page/202303/1286919.shtml
[100] Hackers now exploit critical Fortinet bug to backdoor servers
Link: https://www.bleepingcomputer.com/news/security/hackers-now-exploit-critical-fortinet-bug-to-backdoor-servers/
[101] Hong Kong model murder: details of human butcher shop emerge as police investigate killing
Link: https://www.scmp.com/news/hong-kong/law-and-crime/article/3211464/hong-kong-police-arrest-3-part-womans-dismembered-body-found-village-house
[102] Cisco ClamAV anti-malware scanner vulnerable to serious security flaw
Link: https://portswigger.net/daily-swig/cisco-clamav-anti-malware-scanner-vulnerable-to-serious-security-flaw
[103] Researchers find hidden vulnerabilities in hundreds of Docker containers
Link: https://www.helpnetsecurity.com/2023/02/23/hidden-vulnerabilities-docker-containers/
[104] Elderly lady asking for money beside Bedok MRT station apparently gets S$200-S$300/day, has 2 children & helper
Link: https://mothership.sg/2023/02/elderly-woman-bedok-sell-tissue/
[105] New update in Wikimedia Foundation v. National Security Agency
Link: https://lists.wikimedia.org/hyperkitty/list/wikimedia-l@lists.wikimedia.org/thread/6WEPYWPX7BKQMFTLN43HQNHSCEKS3P4Z/
[106] Cosplayer Rurusama mm, blackmail, stalking and death threats
Link: https://forums.hardwarezone.com.sg/threads/cosplayer-rurusama-mm-blackmail-stalking-and-death-threats.6840956/
[107] Wild Wild Wet’s Songkran Music Festival returns from Apr 14 to 15
Link: https://youthopia.sg/read/wild-wild-wets-songkran-music-festival-returns-from-apr-14-to-15/
[108] Korean survival series Physical: 100 | Official Teaser | Netflix
Link: https://forums.hardwarezone.com.sg/threads/korean-survival-series-physical-100-official-teaser-netflix.6865362/
[109] What’s the Best SIM-Only Plan Today?
Link: https://forums.hardwarezone.com.sg/threads/whats-the-best-sim-only-plan-today.6868821/
[110] Jialat!!!! many tenants buay tahan...'I'm so exhausted': Tenants face hard choices as rents surge in Singapore
Link: https://forums.hardwarezone.com.sg/threads/jialat-many-tenants-buay-tahan-im-so-exhausted-tenants-face-hard-choices-as-rents-surge-in-singapore.6868140/
[111] 'I never imagined a human being could be so evil': 70-year-old cleaner delays retirement after losing $40k life savings
Link: https://forums.hardwarezone.com.sg/threads/i-never-imagined-a-human-being-could-be-so-evil-70-year-old-cleaner-delays-retirement-after-losing-40k-life-savings.6867441/
[112] Inside SOD Land, Japan’s New Porn Actress Theme Park That Prioritizes Customer Safety
Link: https://forums.hardwarezone.com.sg/threads/inside-sod-land-japans-new-porn-actress-theme-park-that-prioritizes-customer-safety.6823027/
[113] GOVERNMENT GUINEA PIGS? INVESTIGATING THE CLAIMS OF ‘TARGETED INDIVIDUALS’ WHO INSIST THEY’RE BEING STALKED, TORTURED
Link: https://thereporters.org/letter/government-guinea-pigs/
[114] OnlyFans creator Gracie Hartie hiring S'pore personal assistant for up to S$5,800
Link: https://mothership.sg/2022/11/gracie-hartie-hiring-assistant-onlyfans/
[115] M’sian Father Burns Daughter’s Entire K-Pop Collection, She Cries & Sifts Through Remnants
Link: https://mustsharenews.com/burned-k-pop-collection/
[116] Gen Y Speaks: I returned to Singapore after 3 years abroad, and needed to learn how to find ‘home’ again
Link: https://www.todayonline.com/gen-y-speaks/singapore-study-abroad-home-united-kingdom-university-1960606
[117] Re: Virtualmin and Webmin web hosting control panel are written in Perl 5
Link: https://marc.info/?l=perl-beginners&m=165952658814443&w=2
[118] 9 Best Dog Adoption Centres In Singapore 2021 With Prices Included
Link: https://blog.petloverscentre.com/dog-adoption-singapore/
[119] The Cost of Dog Parenthood in 2023
Link: https://www.rover.com/blog/cost-of-dog-parenthood/
===EOF===
Comments
Post a Comment