The Information Highway

The Information Highway

Read the latest technology news, your comprehensive source for the latest breakthroughs, trends, and innovations shaping the world of technology.

AI Swipes Data By Listening to Keyboard Keystrokes with 95% Accuracy

GFz7Cb2gFsTPdcus5KvAaJ-1200-80.jpg

A team of researchers from Cornell, specifically Joshua Harrison, Ehsan Toreini and Maryam Mehrnezhad, have published a paper detailing their work in training AI to interpret keyboard input from audio alone. By recording keystrokes to train the model, they were able to predict what was typed on the keyboard with up to 95% accuracy. This accuracy only dropped to 93% when using Zoom to train the system. 

Continue reading
  977 Hits

FBI warns of scammers posing as NFT devs to steal your crypto

FBI_headpic

The FBI warned today of fraudsters posing as Non-Fungible Token (NFT) developers to prey upon NFT enthusiasts and steal their cryptocurrency and NFT assets. 

Continue reading
  891 Hits

New Microsoft Azure AD CTS feature can be abused for lateral movement

microsoft-azure-headpic

Microsoft's new Azure Active Directory Cross-Tenant Synchronization (CTS) feature, introduced in June 2023, has created a new potential attack surface that might allow threat actors to more easily spread laterally to other Azure tenants. Microsoft tenants are client organizations or sub-organizations in Azure Active Directory that are configured wi...

Continue reading
  1240 Hits

FBI, CISA, and NSA reveal top exploited vulnerabilities of 2022

Globe_map

In collaboration with CISA, the NSA, and the FBI, Five Eyes cybersecurity authorities have issued today a list of the 12 most exploited vulnerabilities throughout 2022.

Continue reading
  970 Hits

Russian hackers target govt orgs in Microsoft Teams phishing attacks

Russia__bear

 Microsoft says a hacking group tracked as APT29 and linked to Russia's Foreign Intelligence Service (SVR) targeted dozens of organizations worldwide, including government agencies, in Microsoft Teams phishing attacks.

Continue reading
  949 Hits

Over 640 Citrix servers backdoored with web shells in ongoing attacks

citrix

Hundreds of Citrix Netscaler ADC and Gateway servers have already been breached and backdoored in a series of attacks targeting a critical remote code execution (RCE) vulnerability tracked as CVE-2023-3519. 

Continue reading
  1355 Hits

Hackers exploited Salesforce zero-day in Facebook phishing attack

salesforce

Hackers exploited a zero-day vulnerability in Salesforce's email services and SMTP servers to launch a sophisticated phishing campaign targeting valuable Facebook accounts.

Continue reading
  1044 Hits

Retail chain Hot Topic discloses wave of credential-stuffing attacks

data-theft

American apparel retailer Hot Topic is notifying customers about multiple cyberattacks between February 7 and June 21 that resulted in exposing sensitive information to hackers. 

Continue reading
  1047 Hits

Hackers steal Signal, WhatsApp user data with fake Android chat app

Android_malware

Hackers are using a fake Android app named 'SafeChat' to infect devices with spyware malware that steals call logs, texts, and GPS locations from phones. 

Continue reading
  1106 Hits

Windows 10 KB5028244 update released with 19 fixes, improved security

Windows-10-headpic

Microsoft has released the optional KB5028244 Preview cumulative update for Windows 10 22H2 with 19 fixes or changes, including an update to the Vulnerable Driver Blocklist to block BYOVD attacks.

Continue reading
  1126 Hits

Lazarus hackers linked to $60 million Alphapo cryptocurrency heist

cryptocurrency-assorted

Blockchain analysts blame the North Korean Lazarus hacking group for a recent attack on payment processing platform Alphapo where the attackers stole almost $60 million in crypto. 

Continue reading
  934 Hits

SEC now requires companies to disclose cyberattacks in 4 days

USA_SEC

 The U.S. Securities and Exchange Commission has adopted new rules requiring publicly traded companies to disclose cyberattacks within four business days after determining they're material incidents.

Continue reading
  901 Hits

Windows 11 KB5028254 update fixes VPN performance issues, 27 bugs

Windows_11

Microsoft has released the July 2023 optional cumulative update for Windows 11, version 22H2, with fixes for 27 issues, including ones affecting VPN performance and display or audio devices.

Continue reading
  1091 Hits

Google Chrome to offer 'Link Previews' when hovering over links

Google_Chrome

Google is set to improve Chrome by introducing a new "Link Preview" feature. This feature, currently in development for desktop use, could significantly change how users interact with web content. 

Continue reading
  1071 Hits

39-Year-Old 4.77 MHz DOS Web Server Hits 2,500 Hours of Uptime

5TzCDCgctcb8pKpivJaH85-1200-80.jpg
The website is pretty swift, considering there's just a 39-year-old IBM PCjr behind it.

Behind the simple but not-unappealing website of Brutman Labs, there are some surprising features and statistics. In a recent update posted to the site, it was revealed that the server behind the web destination has run for an impressive "2,500 hours of continuous runtime." However, probably far more eyebrow-raising is the fact that the web server is a 39-year-old IBM PCjr that's packing a 4.77 MHz CPU.

Continue reading
  1510 Hits

This is how generative AI will change the gig economy for the better

Generative AI is transforming the way we work, but fears that it will destroy the economy are overblown.

Artificial intelligence will augment work and could add more opportunities to the job market rather than tank it, according to tech executive Gali Arnon. While some fear that AI will erase huge numbers of roles, Arnon argues that AI will accelerate the pace of job creation, augment work, and accelerate startup opportunities. 

Continue reading
  1121 Hits

Microsoft still unsure how hackers stole Azure AD signing key

Microsoft

Microsoft says it still doesn't know how Chinese hackers stole an inactive Microsoft account (MSA) consumer signing key used to breach the Exchange Online and Azure AD accounts of two dozen organizations, including government agencies. 

Continue reading
  993 Hits

WordPress AIOS plugin used by 1M sites logged plaintext passwords

WordPress-headpi_20230716-190455_1

The All-In-One Security (AIOS) WordPress security plugin, used by over a million WordPress sites, was found to be logging plaintext passwords from user login attempts to the site's database, putting account security at risk. 

Continue reading
  978 Hits

How does ChatGPT actually work?

person-holding-a-phone-with-chatgpt-open

 Google, Wolfram Alpha, and ChatGPT all interact with users via a single-line text entry field and provide text results. Google returns search results, a list of web pages and articles that will (hopefully) provide information related to the search queries. Wolfram Alpha generally provides answers that are mathematical and data analysis-related.

Continue reading
  890 Hits

Google Play will enforce business checks to curb malware submissions

google-play

Google is fighting back against the constant invasion of malware on Google Play by requiring all new developer accounts registering as an organization to provide a valid D-U-N-S number before submitting apps.

Continue reading
  962 Hits

Top Breaches Of 2023

Customers Affected In T-Mobile Breach
Accounts Affected In MOVEit Breach
Customers Affected In MCNA Insurance Data Breach
Individuals Affected In PharMerica Data Breach
Users Affected In ChatGPT Major Data Breach
*Founder Shield End of Year 2023