Read Time:4 Second
Proofpoint highlighted how smishing, impersonation and spam are eroding trust in mobile messaging
Daily Archives: July 2, 2024
Chrome Update Will Block Entrust Certificates by November 2024
Read Time:6 Second
The move follows a series of reported compliance failures and lack of progress in addressing publicly disclosed incidents
Ransomware Attack Demands Reach a Staggering $5.2m in 2024
Read Time:8 Second
Comparitech calculated that the average ransom demand was over $5.2m in the first six months of 2024, with 421 confirmed incidents during this period
USN-6860-1: OpenVPN vulnerabilities
Read Time:26 Second
Reynir Björnsson discovered that OpenVPN incorrectly handled terminating
client connections. A remote authenticated client could possibly use this
issue to keep the connection active, bypassing certain security policies.
This issue only affected Ubuntu 23.10, and Ubuntu 24.04 LTS.
(CVE-2024-28882)
Reynir Björnsson discovered that OpenVPN incorrectly handled certain
control channel messages with nonprintable characters. A remote attacker
could possibly use this issue to cause OpenVPN to consume resources, or
fill up log files with garbage, leading to a denial of service.
(CVE-2024-5594)
The AI Fix #5: An angry AI girlfriend, and artificial intelligence is stupid
Read Time:13 Second
Find out why AI is stupid, what Toys “R” Us has done that’s even more annoying than putting that “R” in its name, why Graham Cluley has an angry AI girlfriend, and much much more in episode five of “The AI Fix” podcast
onnx-1.14.1-3.fc40
Read Time:6 Second
FEDORA-2024-d9c7181a19
Packages in this update:
onnx-1.14.1-3.fc40
Update description:
Security fix for CVE-2024-5187
squid-6.10-1.fc40
Read Time:6 Second
FEDORA-2024-110b39017e
Packages in this update:
squid-6.10-1.fc40
Update description:
version update
security update
squid-6.10-1.fc39
Read Time:6 Second
FEDORA-2024-8ca9261bdd
Packages in this update:
squid-6.10-1.fc39
Update description:
version update
security update
Public Surveillance of Bars
Read Time:9 Second
This article about an app that lets people remotely view bars to see if they’re crowded or not is filled with commentary—on both sides—about privacy and openness.
wordpress-6.5.5-1.fc40
Read Time:42 Second
FEDORA-2024-6a4ffde369
Packages in this update:
wordpress-6.5.5-1.fc40
Update description:
WordPress 6.5.5 Maintenance & Security Release
Security updates included in this release
The security team would like to thank the following people for responsibly reporting vulnerabilities, and allowing them to be fixed in this release:
A cross-site scripting (XSS) vulnerability affecting the HTML API reported by Dennis Snell of the WordPress Core Team, along with Alex Concha and Grzegorz (Greg) Ziółkowski of the WordPress security team.
A cross-site scripting (XSS) vulnerability affecting the Template Part block reported independently by Rafie Muhammad of Patchstack and during a third party security audit.
A path traversal issue affecting sites hosted on Windows reported independently by Rafie M & Edouard L of Patchstack, David Fifield, x89, apple502j, and mishre.
See also the Upstream announcement