Lucene search
K

46 matches found

Talos Blog
Talos Blog
added 2026/04/30 6:0 p.m.8 views

Great responsibility, without great power

Welcome to this week's edition of the Threat Source newsletter. As I'm writing this, today April 28 is International Superhero Day. If you don't know the origin story behind this, perhaps you would assume that this day was dreamed up by Marvel. And… you would be correct. However, it's not a pure...

9.8CVSS6.7AI score0.86607EPSS
Exploits7
Wired Threat Level
Wired Threat Level
added 2025/12/11 10:15 p.m.4 views

Warnings Mount in Congress Over Expanded US Wiretap Powers

Experts tell US lawmakers that a crucial spy program’s safeguards are failing, allowing intel agencies deeper, unconstrained access to Americans’ data...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/09/19 7:5 a.m.2 views

U.K. Arrests Two Teen Scattered Spider Hackers Linked to August 2024 TfL Cyber Attack

Law enforcement authorities in the U.K. have arrested two teen members of the Scattered Spider hacking group in connection with their alleged participation in an August 2024 cyber attack targeting Transport for London TfL, the city's public transportation agency. Thalha Jubair aka EarthtoStar,...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/08/19 11:24 a.m.9 views

U.K. Government Drops Apple Encryption Backdoor Order After U.S. Civil Liberties Pushback

The U.K. government has apparently abandoned its plans to force Apple to weaken encryption protections and include a backdoor that would have enabled access to the protected data of U.S. citizens. U.S. Director of National Intelligence DNI Tulsi Gabbard, in a statement posted on X, said the U.S...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/10 12:0 a.m.6 views

Symbolic Generation and Modular Embedding of High-Quality Abc-Triples

We present a symbolic identity for generating integer triples $a, b, c$ satisfying $a + b = c$, inspired by structural features of the \emphabc conjecture. The construction uses powers of $2$ and $3$ in combination with modular inversion in $\mathbbZ/3^p\mathbbZ$, leading to a parametric identity...

6.9AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2024/12/18 8:31 p.m.7 views

Congress Again Fails to Limit Scope of Spy Powers in New Defense Bill

The National Defense Authorization Act passed today, but lawmakers stripped language that would keep the Trump administration from wielding unprecedented authority to surveil Americans...

7.2AI score
Exploits0
Information Security Automation
Information Security Automation
added 2024/11/19 8:19 a.m.11 views

On November 13, NIST NVD finally admitted the obvious: they had failed to process the CVE analysis backlog before the end of the fiscal year (September 30)

On November 13, NIST NVD finallyadmittedthe obvious: they had failed to process the CVE analysis backlog before the end of the fiscal year September 30. This is actually visible in their own statistics. At the moment, there are 19860 identifiers in the backlog. This week, 1136 new CVEs were...

7.2AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2024/04/22 4:59 p.m.16 views

The Next US President Will Have Troubling New Surveillance Powers

Over the weekend, President Joe Biden signed legislation not only reauthorizing a major FISA spy program but expanding it in ways that could have major implications for privacy rights in the US...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/04/22 9:22 a.m.84 views

Researchers Uncover Windows Flaws Granting Hackers Rootkit-Like Powers

New research has found that the DOS-to-NT path conversion process could be exploited by threat actors to achieve rootkit-like capabilities to conceal and impersonate files, directories, and processes. "When a user executes a function that has a path argument in Windows, the DOS path at which the...

7.8CVSS7.9AI score0.01673EPSS
Exploits1
NVD
NVD
added 2024/04/15 8:15 a.m.16 views

CVE-2024-30545

Cross-Site Request Forgery CSRF vulnerability in Nick Powers Social Author Bio allows Stored XSS.This issue affects Social Author Bio: from n/a through 2.4...

7.1CVSS6.8AI score0.00195EPSS
Exploits0References1
CVE
CVE
added 2024/04/15 7:47 a.m.75 views

CVE-2024-30545

Technical details about CVE-2024-30545 are not provided in the connected documents; public information in the initial description indicates a CSRF-enabled Stored XSS vulnerability in Social Author Bio up to version 2.4. Monitor for authoritative fixes and advisories.

7.1CVSS8.5AI score0.00195EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.4 views

PT-2024-23475 · Unknown · Nick Powers Social Author Bio

Name of the Vulnerable Software and Affected Versions: Nick Powers Social Author Bio versions n/a through 2.4 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS in Nick Powers Social Author Bio. Recommendations: For versions n/a through 2.4, update to...

7.1CVSS9.1AI score0.00195EPSS
Exploits0References4
Wired Threat Level
Wired Threat Level
added 2024/04/10 8:15 p.m.14 views

Trump Loyalists Kill Vote on US Wiretap Program

An attempt to reauthorize Section 702, the so-called crown jewel of US spy powers, failed for a third time in the House of Representatives after former president Donald Trump criticized the law...

7.2AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2024/03/13 5:42 p.m.16 views

The ‘Emergency Powers’ Risk of a Second Trump Presidency

Every US president has the ability to invoke “emergency powers” that could give an authoritarian leader the ability to censor the internet, restrict travel, and more...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/07/22 5:36 a.m.46 views

Apple Threatens to Pull iMessage and FaceTime from U.K. Amid Surveillance Demands

Apple has warned that it would rather stop offering iMessage and FaceTime services in the U.K. than bowing down to government pressure in response to new proposals that seek to expand digital surveillance powers available to state intelligence agencies. The development, first reported by BBC News...

6.3AI score
Exploits0
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.7 views

WordPress WP Dev Powers – Display Screen Dimensions to Admin Plugin Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Dev Powers – Display Screen Dimensions to Admin Plugin Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f38bbbbde0ec...

6.4AI score0.00284EPSS
Exploits0References2Affected Software1
Schneier on Security
Schneier on Security
added 2023/07/13 11:20 a.m.8 views

French Police Will Be Able to Spy on People through Their Cell Phones

The French police are getting new surveillance powers: French police should be able to spy on suspects by remotely activating the camera, microphone and GPS of their phones and other devices, lawmakers agreed late on Wednesday, July 5. … Covering laptops, cars and other connected objects as well ...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2023/04/19 10:7 a.m.22 views

EFF on the UN Cybercrime Treaty

EFF has a good explainer on the problems with the new UN Cybercrime Treaty, currently being negotiated in Vienna. The draft treaty has the potential to rewrite criminal laws around the world, possibly adding over 30 criminal offenses and new expansive police powers for both domestic and...

6.8AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/11/10 10:17 a.m.17 views

Harsher penalties for data breaches in new Australian privacy bill

High-profile breaches mean high-profile action In the aftermath of another crop of high-profile data breaches, the Australian Government also known as the Commonwealth Government has introduced amendments to Australian privacy law which give the regulator new powers and the ability to impose...

0.7AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2022/05/24 11:0 a.m.15 views

Open Source Intelligence May Be Changing Old-School War

Intelligence collected from public information online could be impacting traditional warfare and altering the calculus between large and small powers...

3.1AI score
Exploits0
Rows per page
Query Builder