Tech News
General news about the tech industry, trends, and major events.
Critical Ivanti RCE flaw with public exploit now used in attacks
CISA warned today that a critical Ivanti vulnerability that can let threat actors gain remote code execution on vulnerable Endpoint Manager (EPM) appliances is now actively exploited in attacks. Ivanti EPM is an all-in-one endpoint management solution that helps admins manage client devices on various platforms, including Windows, macOS, Chrome OS, and IoT operating systems. Tracked […]
Fake browser updates spread updated WarmCookie malware
A new ‘FakeUpdate’ campaign targeting users in France leverages compromised websites to show fake browser and application updates that spread a new version of the WarmCookie backdoor. FakeUpdate is a cyberattack strategy used by a threat group known as ‘SocGolish’ who compromises or creates fake websites to show visitors fake update prompts for a variety of applications, such […]
Microsoft Office 2024 now available for Windows and macOS users
Microsoft has released Office 2024 for small businesses and consumers who want a standalone version without a Microsoft 365 subscription. Office 2024 includes updated, locked-in-time versions of Word, Excel, PowerPoint, OneNote, and Outlook for Windows and macOS systems. It also requires a Microsoft account and an internet connection (likely needed during the installation and for […]
CISA: Network switch RCE flaw impacts critical infrastructure
U.S. cybersecurity agency CISA is warning about two critical vulnerabilities that allow authentication bypass and remote code execution in Optigo Networks ONS-S8 Aggregation Switch products used in critical infrastructure. The flaws concern weak authentication problems, allowing bypassing of password requirements, and user input validation issues potentially leading to remote code execution, arbitrary file uploads, and directory […]
Critical Zimbra RCE flaw exploited to backdoor servers using emails
Hackers are actively exploiting a recently disclosed RCE vulnerability in Zimbra email servers that can be triggered simply by sending specially crafted emails to the SMTP server. The Zimbra remote code execution flaw is tracked as CVE-2024-45519 and exists in Zimbra’s postjournal service, which is used to parse incoming emails over SMTP. Attackers can exploit the […]
Microsoft blocks Windows 11 24H2 on some Intel PCs over BSOD issues
Microsoft is blocking Windows 11 24H2 upgrades on systems with incompatible Intel Smart Sound Technology (SST) audio drivers due to blue screen of death (BSOD) issues. Intel SST is an integrated audio DSP (Digital Signal Processor) that handles audio, voice, and speech interactions on devices with Intel Core and Intel Atom processors. The company said in a new […]
Microsoft warns of Windows 11 24H2 gaming performance issues
Microsoft has blocked Windows 11 24H2 upgrades on some systems because of known issues causing Asphalt 8 game crashes and Easy Anti-Cheat blue screens. While playing Asphalt 8, the game may freeze with an error when using or exiting it, requiring a game restart to recover. “After installing Windows 11, version 24H2, you might face issues with […]
Starlink Pricing and Speeds: Everything You Need to Know
Starlink, SpaceX’s satellite internet service, has made waves in the tech world. It promises fast speeds and wide coverage, even in remote areas. But how does it stack up in terms of performance and cost? Starlink offers download speeds of 50 to 500 Mbps, depending on the plan you choose. The Standard plan provides 24-220 Mbps for $120 […]
Gaming PC Build Costs: How to Build Your Rig from $500 to $4,000+
Building a gaming PC can be an exciting yet daunting task for many enthusiasts. The cost varies widely based on component choices and performance goals. A basic gaming PC can start around $500, while high-end systems can exceed $4,000. The price range reflects the diverse needs of gamers. Budget-conscious players may opt for a $700 build […]
Rackspace monitoring data stolen in ScienceLogic zero-day attack
Cloud hosting provider Rackspace suffered a data breach exposing “limited” customer monitoring data after threat actors exploited a zero-day vulnerability in a third-party tool used by the ScienceLogic SL1 platform. ScienceLogic confirmed to GeekFeed that they quickly developed a patch to address the risk and distributed it to all impacted customers while still providing assistance […]