Login
Spanish police arrested a hacker who allegedly manipulated a hotel booking website, allowing him to pay one cent for luxury hotel stays. He also raided the mini-bars and didn't settle some of those tabs, police say.β¦
TP-Link is facing legal action from the state of Texas for allegedly misleading consumers with "Made in Vietnam" claims despite China-dominated manufacturing and supply chains, and for marketing its devices as secure despite reported firmware vulnerabilities exploited by Chinese state-sponsored actors.β¦
If you wanted to book a train trip in Germany recently, you would have been out of luck. The country's national rail company says that its services were disrupted for hours because of a cyberattack.β¦
Generative AI tools are surprisingly poor at suggesting strong passwords, experts say.β¦
Notepad++ has continued beefing up security with a release the project's author claims makes the "update process robust and effectively unexploitable."β¦
Lockheed Martin's F-35 fighter aircraft can be jailbroken "just like an iPhone," the Netherlands' defense secretary has claimed.β¦
HackerOne has clarified its stance on GenAI after researchers fretted their submissions were being used to train its models.β¦
If enterprises are implementing AI, theyβre not showing it to Palo Alto Networks CEO Nikesh Arora, who on Tuesday said business adoption of the tech lags consumer take-up by at least a couple of years β except for coding assistants.β¦
China-linked attackers exploited a maximum-severity hardcoded-credential bug in Dell RecoverPoint for Virtual Machines as a zero-day since at least mid-2024. It's all part of a long-running effort to backdoor infected machines for long-term access, according to Google's Mandiant incident response team.β¦
Three new threat groups began targeting critical infrastructure last year, while a well-known Beijing-backed crew - Volt Typhoon - continued to compromise cellular gateways and routers, and then break into US electric, oil, and gas companies in 2025, according to Dragos' annual threat report published on Tuesday.β¦
Iβve been looking at a clearnet CAPTCHA gated login surface that appears to act as an entry point into Kraken, a Russian language darknet marketplace that operates on Tor.
Visually, the clearnet and onion login pages are nearly identical, but the interesting part is the backend behavior. Credentials are submitted to clearnet endpoints first, followed by background requests that appear to handle routing and session binding to specific onion backends. Cookie telemetry includes Tor aware parameters (onion server IDs, routing identifiers, proxy session values), which suggests the clearnet layer is doing more than just static redirection.
While analyzing network traffic from Samsung devices, I found the built-in Weather widget silently sending precise GPS coordinates to IBMβs api.weather.com β with a persistent user identifier and a hardcoded API key baked into the app.
Findings from 34 Samsung devices observed over 3 days:
- 2 hardcoded IBM Weather Company API keys shared across all devices (~6,000 requests captured)
- Precise lat/long (~100m accuracy) sent as URL parameters every 15-30 min
- Persistent device ID sent with every request β IBM can build longitudinal location profiles across sessions, days, weeks
- 4 Samsung services involved: `par=samsung_widget`, `par=samsung_pn`, `par=samsung_radar`, `par=samsung_notifications`
- One device made 1,740 requests in 3 days β enough for IBM to reconstruct where the user sleeps, works, and travels
Two real problems: Samsung sends a persistent device ID, letting IBM build your location profile over time. And you never opted in β itβs a pre-installed system app most users donβt know is running and canβt easily remove.
Verify the key is live yourself:
For context β in 2019, LA sued The Weather Channel app for secretly mining user geolocation for advertising. IBM settled. Samsung is now funneling the same type of data into the same IBM infrastructure via a pre-installed system app on ~260M devices shipped per year.
A US law firm has accused Lenovo of violating Justice Department strictures about the bulk transfer of data to foreign adversaries, namely China.β¦
Polish police have arrested and charged a man over ties to the Phobos ransomware group following a property raid.β¦
FreshRSS 