FreshRSS

πŸ”’
❌ About FreshRSS
☷
β–³ πŸ”ƒ
There are new available articles, click to refresh the page.
Before yesterdaySecurity

How to Not Get Hacked by a QR Code

By David Nield
QR codes can be convenientβ€”but they can also be exploited by malicious actors. Here’s how to protect yourself.

ChatGPT Spit Out Sensitive Data When Told to Repeat β€˜Poem’ Forever

By Lily Hay Newman, Andy Greenberg
Plus: A major ransomware crackdown, the arrest of Ukraine’s cybersecurity chief, and a hack-for-hire entrepreneur charged with attempted murder.

When It Comes to January 6 Lawsuits, a Court Splits Donald Trump in Two

By Dell Cameron
A federal court ruled on Friday that Trump, as president, may be able to avoid civil action for his role in the January 6, 2021, attack on the US Capitol. But candidate Trump is something different.

Anduril’s New Drone Killer Is Locked on to AI-Powered Warfare

By Will Knight
Autonomous drones are rapidly changing combat. Anduril’s new one aims to gain an edge with jet power and AI.

Google Fixes a Seventh Zero-Day Flaw in Chromeβ€”Update Now

By Kate O'Flaherty
Plus: Major security patches from Microsoft, Mozilla, Atlassian, Cisco, and more.

The CDC's Gun Violence Research Is in Danger

By Matt Laslo
In a year pocked with fights over US government funding, Republicans are quietly trying to strip the Centers for Disease Control and Prevention of its ability to research gun violence.

Okta Breach Impacted All Customer Support Usersβ€”Not 1 Percent

By Lily Hay Newman
Okta upped its original estimate of customer support users affected by a recent breach from 1 percent to 100 percent, citing a β€œdiscrepancy.”

OpenAI’s Custom Chatbots Are Leaking Their Secrets

By Matt Burgess
Released earlier this month, OpenAI’s GPTs let anyone create custom chatbots. But some of the data they’re built on is easily exposed.

A Civil Rights Firestorm Erupts Around a Looming Surveillance Power Grab

By Dell Cameron
Dozens of advocacy groups are pressuring the US Congress to abandon plans to ram through the renewal of a controversial surveillance program that they say poses an β€œalarming threat to civil rights.”

Telegram’s Bans on Extremist Channels Aren't Really Bans

By Vittoria Elliott
A WIRED analysis of more than 100 restricted channels shows these communities remain active, and content shared within them often spreads to channels accessible to the public.

Section 702 Surveillance Reauthorization May Get Slipped Into β€˜Must-Pass’ NDAA

By Dell Cameron
Congressional leaders are discussing ways to reauthorize Section 702 surveillance, including by attaching it to the National Defense Authorization Act, Capitol Hill sources tell WIRED.

You Don’t Need to Turn Off Apple’s NameDrop Feature in iOS 17

By Reece Rogers
Yes, your iPhone automatically turns on NameDrop with the latest software update. But you shouldn’t really be worried about itβ€”regardless of what the police are saying.

EvilSlackbot: A Slack Attack Framework

By /u/Dr_Mantis_Tobbogon

I created this Slack attack framework for red teams and pentesters conducting Phishing simulations within Slack workspaces. EvilSlackbot utilizes xoxb bot tokens and allows you to send Spoofed bot messages, phishing links, files, and search Slack for leaked secrets via a keyword search.

This tool can also be used to automate slack phishing exercises, by feeding EvilSlackbot a list of emails you would like to test by sending them simulated phishing messages.

submitted by /u/Dr_Mantis_Tobbogon
[link] [comments]

Private and Secure Web Search Engines: DuckDuckGo, Brave, Kagi, Startpage

By Boone Ashworth, David Nield, Matt Burgess
What you look for online is up to youβ€”just make sure no one else is taking a peek.

Google’s Ad Blocker Crackdown Is Growing

By Matt Burgess
Plus: North Korean supply chain attacks, a Russian USB worm spreads internationally, and more.

Hide files inside images

By /u/JizosKasa

Hello everyone! I recently developed a python program for hiding files inside images (steganography) and I'm right now working on a encryption system too.

This is just a fun little project and also my first to reach > 100 stars. I'd love to see someone contribute in any way, whether that is a pull request or any kind of issue. I'd prefer if people used the GitHub repo for asking questions, requesting features or reporting a bug (of course I'll answer questions here too, asking them on the GitHub page can let other people see the answer too tho).

Thanks for reading through this, hope you'll like the project!

submitted by /u/JizosKasa
[link] [comments]

It's Time to Log Off

By Thor Benson
There’s a devastating amount of heavy news these days. Psychology experts say you need to know your limitsβ€”and when to put down the phone.

IPSec Analysis (X-Post from /r/malware)

By /u/tohitsugu

My analysis on the recently dismantled ipstorm golang malware. It’s rather noisy for malware.

submitted by /u/tohitsugu
[link] [comments]

DOJ Charges Binance With Vast Money-Laundering Scheme and Sanctions Violations

By Andy Greenberg
From Russia to Iran, the feds have charged Binance with conducting well over $1 billion in transactions with sanctioned countries and criminal actors.

Secretive White House Surveillance Program Gives Cops Access to Trillions of US Phone Records

By Dell Cameron, Dhruv Mehrotra
A WIRED analysis of leaked police documents verifies that a secretive government program is allowing federal, state, and local law enforcement to access phone records of Americans who are not suspected of a crime.
❌