Friday 17 December 2021

NSO Zero-Click Exploit: Turing-Complete CPU in Image File - Security Boulevard

SEAR+GP0 vs. NSO: Researchers have reverse engineered NSO Group’s recent zero-click iPhone exploit—from the Pegasus spyware suite. And it’s a doozy: People are using words like, “terrifying,” “alarming,” “dangerous,” “weird,” “amazing,” “impressive,” “brilliant” and “ridiculous.”

Wednesday 15 December 2021

U.S. Govt. CX EO | Mozilla Revenue | Log4j Latest -

Tuesday 14 December 2021

Apple AirTag Android App is Absolutely Awful—Tracker Detect Fail - Security Boulevard

Follow the Money: Apple is proud to announce its anti-stalking app for Android. The Tracker Detect app lets Android users scan for malicious, hidden AirTag trackers placed by stalkers, thieves and other bad people. Sounds great, right? Except …

Monday 13 December 2021

Update: Log4Shell RCE Zero-Day—Reactions and Recriminations - Security Boulevard

Java Considered Harmful: Last week’s critical bug in Log4j still reverberates ’round the racks. Disbelief quickly gave way to denial and bargaining.