intel
Windows Quietly Patches Bug That Could Reverse Meltdown, Spectre Fixes for Intel CPUs

Microsoft has fixed a “serious security flaw in Intel processors” that threatened to undo both companies’ work patching the Spectre and Meltdown vulnerabilities, Tom’s Guide reported on Tuesday. Read More >>

google
Google’s Project Zero Finds Six ‘Interactionless’ iOS Vulnerabilities Using iMessage App

Apple released bug fixes for five major security issues in iOS that can be exploited via its iMessage client app last week after they were discovered by researchers for competitor Google’s exploit-hunting Project Zero, though an additional issue was reported and not totally resolved in the iOS 2.4 update, according to the BBC. Read More >>

russia
Hackers Reportedly Break Into SyTech, a Contractor for Russia’s Federal Security Service

Hackers breached servers at a contractor for Russia’s Federal Security Service (FSB), SyTech, and stole about 7.5 terabytes of data after gaining access to the company’s entire network earlier this month, ZDnet reported on Saturday. Read More >>

hacking
Report: NSO Group’s Pegasus Spyware Can Break Into Cloud Services, Transmit User Data to Server

Israeli spyware company NSO Group’s powerful Pegasus malware – the same spyware implicated in a breach of WhatsApp earlier this year – is capable of scraping a target’s data from the servers of Apple, Google, Amazon, Facebook and Microsoft, according to a report in the Financial Times on Friday. Read More >>

cybersecurity
Zoom Backtracks, Says It Will Actually Fix Major Flaw That Could Let Hackers Hijack Mac Webcams

After initially defending their decision to install insecure local web servers on Mac users’ machines that posed a major security risk and could be hijacked by attackers, teleconferencing app Zoom has backtracked and has said it will quickly remove the “feature.” Read More >>

cybersecurity
Serious Security Flaw With Teleconferencing App Could Allow Websites to Hijack Mac Webcams

On Monday, security researcher Jonathan Leitschuh publicly disclosed a serious zero-day vulnerability in conferencing software Zoom – which apparently achieves its click-to-join feature, which allows users to go directly to a video meeting from a browser link, on Mac computers by installing a local web server running as a background process that “accepts requests regular browsers wouldn’t,” per the Verge. As a result, Zoom could be hijacked by any website to force a Mac user to join a call without their permission, and with webcams activated unless a specific setting was enabled. Read More >>

bitcoin
One of the World’s Largest Crypto Exchanges, Binance, Hacked to the Tune of £31 Million

Cryptocurrency trading hub Binance, one of the world’s largest, has confirmed it lost about 7,000 Bitcoins (around $40 million/£31 million) to hackers after its so-called “hot wallet,” i.e. one connected to the internet and used to process transactions, was breached, Bloomberg reported on Tuesday. Read More >>

amazon
Amazon Says ‘Extensive’ Fraud Allowed Cybercriminals to Siphon Cash From Seller Accounts

UK legal documents obtained by Bloomberg show that e-commerce titan Amazon fell prey to “extensive” fraud that allowed cybercriminals to obtain access to around 100 seller accounts and transfer cash into their bank accounts, with the company confirming to the news agency that it had completed an investigation into the incident. Read More >>

huawei
US Central Intelligence Agency Allegedly Told Allies That Huawei Is Funded By Chinese State Security, Army

The US Central Intelligence Agency (CIA) has accused Chinese tech giant Huawei of accepting funding from the “People’s Liberation Army, China’s National Security Commission and a third branch of the Chinese state intelligence network,” the Times of London reported on Saturday, citing a “UK source.” Read More >>

julian assange
Ecuador Claims It’s Been Hit With 40 Million Cyberattacks Since Giving Up Julian Assange

Ecuadorian officials claim the country has suffered some 40 million cyber attacks since it allowed UK police to forcibly remove Wikileaks founder Julian Assange from their embassy in London, according to Agence France-Presse. Read More >>

internet
Report: Hackers Steal, Publish Data on Thousands of Federal Agents, Police Officers Across US

Hackers have stolen data from “several FBI-affiliated websites” and are distributing it across the web, TechCrunch reported on Friday, with details on “thousands of federal agents and law enforcement officers” now floating around on the web. Read More >>

amazon
Report: Jeff Bezos Is Meeting With Prosecutors Over Allegations Saudis Hacked His Nudes

Amazon CEO Jeff Bezos is “scheduled to meet with federal prosecutors in New York as soon as this week” regarding allegations that the National Enquirer tabloid and its parent company, American Media Inc., engaged in extortion and blackmail with a stolen nude and other sexts from an adulterous relationship. Read More >>

cryptocurrency
Crypto Exchange Coinbase Says It Made a Mistake Buying Italian Firm Linked to Notorious Hacking Team

Cryptocurrency exchange Coinbase has acknowledged it made a major mistake when it bought Italian blockchain analytics firm Neutrino, whose senior management staff included several members of infamous Italian firm Hacking Team—which has reportedly sold powerful hacking and surveillance tools to oppressive governments. Read More >>

cryptocurrency
Report: Just Two Groups May Be Behind $1 Billion in Cryptocurrency Hacks

Just two groups of “highly sophisticated cyber criminals” may be behind an estimated $1 billion (£760 million) in cryptocurrency thefts, the Wall Street Journal reported on Monday. Read More >>

google
Dual UPnP-Chromecast Exploit Allows Hacker to Hijack Devices, Force Any YouTube Video to Play

Hackers have discovered a bug that allows attackers to seize control of Google’s Chromecast media streaming player, making it possible to force the device into “playing any YouTube video they want – including videos that are custom-made,” TechCrunch reported on Wednesday. Read More >>