The Vision Pro uses 3D avatars on calls and for streaming. These researchers used eye tracking to work out the passwords and PINs people typed with their avatars.
Unit 29155 of Russiaβs GRU military intelligence agencyβa team responsible for coup attempts, assassinations, and bombingsβhas branched out into brazen hacking operations with targets across the world.
Plus: China-linked hackers infiltrate US internet providers, authorities crack down on a major piracy operation, and a ransomware gang claims attacks during the Paris Olympics.
Suspected Russian hackers have compromised a series of websites to utilize sophisticated spyware exploits that are eerily similar to those created by NSO Group and Intellexa.
In addition to its long-standing password spraying attacks, Microsoft says Iran-backed hacker group Peach Sandstormβor APT 33βhas developed custom malware dubbed βTickler.β
Plus: The US intelligence community formally blames Iran for Trump campaign hack, aircraft-tracking platform FlightAware says a βconfiguration errorβ exposed sensitive user data, and more.
The AI ethics nonprofit Humane Intelligence and the US National Institute of Standards and Technology are launching a series of contests to get more people probing for problems in generative AI systems.
Amazon has updated its instructions for how customers should more securely implement AWS's traffic-routing service known as Application Load Balancer, but it's not clear everyone will get the memo.
Social Security numbers, physical addresses, and moreβall available online. After months of confusion, leaked information from a background-check firm underscores the long-term risks of data breaches.