22 Nov, 2024

Geek Feed

Latest IT News & Tech Trends

Contact Us
Breaking News
NVIDIA GeForce RTX 5090

NVIDIA GeForce RTX 5090: Specs, Performance, Price & Release Date – Everything You Need to Know

New FIDO proposal lets you securely move passkeys across platforms

New FIDO proposal lets you securely move passkeys across platforms

Cyberattack at French hospital exposes health data of 750,000 patients

Cyberattack at French hospital exposes health data of 750,000 patients

Fintech giant Finastra investigates data breach after SFTP hack

Fintech giant Finastra investigates data breach after SFTP hack

MITRE shares 2024's top 25 most dangerous software weaknesses

MITRE shares 2024’s top 25 most dangerous software weaknesses

US charges five linked to Scattered Spider cybercrime gang

US charges five linked to Scattered Spider cybercrime gang

Palo Alto Networks warns of critical RCE zero-day exploited in attacks

geekfeed0Tagged , , , , , ,

Palo Alto Networks is warning that a critical zero-day vulnerability on Next-Generation Firewalls (NGFW) management interfaces, currently tracked as ‘PAN-SA-2024-0015,’ is actively being exploited in attacks. The flaw was originally disclosed on November 8, 2024, with Palo Alto Networks warning customers to restrict access to their next-generation firewalls because of a “potential” remote code execution (RCE) vulnerability impacting […]

Read More
3 mins read

ChatGPT allows access to underlying sandbox OS, “playbook” data

geekfeed0Tagged , , , ,

OpenAI’s ChatGPT platform provides a great degree of access to the LLM’s sandbox, allowing you to upload programs and files, execute commands, and browse the sandbox’s file structure. The ChatGPT sandbox is an isolated environment that allows users to interact with the it securely while being walled off from other users and the host servers. […]

Read More
5 mins read

Hacker gets 10 years in prison for extorting US healthcare provider

geekfeed0Tagged , , , , , , ,

Robert Purbeck, a 45-year-old man from Idaho, has been sentenced to ten years in prison for hacking at least 19 organizations in the United States, stealing the personal data of more than 132,000 people, and multiple extortion attempts. As showcased in the indictment, prosecutors linked multiple data theft and blackmail incidents to Purbeck (also known online […]

Read More
2 mins read

New Glove infostealer malware bypasses Chrome’s cookie encryption

geekfeed0Tagged , , , , , ,

New Glove Stealer malware can bypass Google Chrome’s Application-Bound (App-Bound) encryption to steal browser cookies. As Gen Digital security researchers who first spotted it while investigating a recent phishing campaign said, this information-stealing malware is “relatively simple and contains minimal obfuscation or protection mechanisms,” indicating that it’s very likely in its early development stages. During […]

Read More
3 mins read

CISA warns of more Palo Alto Networks bugs exploited in attacks

geekfeed0Tagged , , , , ,

CISA warned today that two more critical security vulnerabilities in Palo Alto Networks’ Expedition migration tool are now actively exploited in the wild. Attackers can use the two unauthenticated command injection (CVE-2024-9463) and SQL injection (CVE-2024-9465) vulnerabilities to hack into unpatched systems running the company’s Expedition migration tool, which helps migrate configurations from Checkpoint, Cisco, […]

Read More
2 mins read

Fraud network uses 4,700 fake shopping sites to steal credit cards

geekfeed0Tagged , , , , , ,

A financially motivated Chinese threat actor dubbed “SilkSpecter” is using thousands of fake online stores to steal the payment card details of online shoppers in the U.S. and Europe. The fraud campaign started in October 2024, offering steep discounts for the upcoming Black Friday shopping period that usually sees elevated shopping activity. EclecticIQ threat researcher […]

Read More
2 mins read

Microsoft just killed the Windows 10 Beta Channel again

geekfeed0Tagged , , , , ,

​Microsoft has shut down the Windows 10 Beta Channel and will move all enrolled Windows Insiders to the Release Preview Channel. This comes after the company reopened the Windows 10 beta channel in early June, releasing the first Beta build three years after the last such build was rolled out to Windows 10 Insiders in 2021. “To bring new […]

Read More
2 mins read

Hackers use macOS extended file attributes to hide malicious code

geekfeed0Tagged , , , , ,

Hackers are using a novel technique that abuses extended attributes for macOS files to deliver a new trojan that researchers call RustyAttr. The threat actor is hiding malicious code in custom file metadata and also uses decoy PDF documents to help evade detection. The new technique is similar to how the Bundlore adware in 2020 hid its […]

Read More
3 mins read

Leaked info of 122 million linked to B2B data aggregator breach

geekfeed0Tagged , , , , , , ,

The business contact information for 122 million people circulating since February 2024 is now confirmed to have been stolen from a B2B demand generation platform. The data comes from DemandScience (formerly Pure Incubation), a B2B demand generation company that aggregates data. Data aggregation is the process of collecting, compiling, and organizing data from public sources to […]

Read More
2 mins read

Microsoft patches Windows zero-day exploited in attacks on Ukraine

geekfeed0Tagged , , , , , ,

Suspected Russian hackers were caught exploiting a recently patched Windows vulnerability as a zero-day in ongoing attacks targeting Ukrainian entities. The security flaw (CVE-2024-43451) is an NTLM Hash Disclosure spoofing vulnerability reported by ClearSky security researchers, which can be exploited to steal the logged-in user’s NTLMv2 hash by forcing connections to a remote attacker-controlled server. […]

Read More
2 mins read