News flaw | Silicon UK

The Business of Bots robot artificial intelligence ai

OpenAI Fixes Bug With ChatGPT That Exposed User Chats

Chief executive of OpenAI admits “significant issue” in ChatGPT has now been fixed, after user chat titles were exposed

Apple Security Flaw Being Actively Exploited

Update now. Vulnerability impacts a number of Apple iPhone, iPad and Mac models, and the flaw has been actively exploited

Browsers

Apple Working To Patch Safari Data Leak Vulnerability

Oh dear, not so private. Webkit browser engine flaw has been leaking user ID and browser data since iOS 15 went live in September 2021

security vulnerability Shutterstock - © Andy Dean Photography

Cloud

Tech Industry Scrambles Over Log4j Vulnerability

Vulnerability found in Apache logging library Log4j exposes popular apps, websites and online services to attack and exploitation

CyberCrime

Millions Of Sky Routers Left Vulnerable To Attack For Months

Sky routers left vulnerable to traffic-hijacking flaw for more than a year as company claims challenges in patch rollout process

Components

Intel Security Flaw Affects Pentium, Atom, Celeron Chips

Researchers find vulnerability in certain low powered Intel chips, but good news is that patches are available for download now

CyberCrime

Flaw With Apple Pay, Visa Uncovered By University Researchers

Researchers uncover flaw when Apple Pay linked to a Visa card is used for transportation payments on say the London Underground

CyberCrime

US Agencies Urge Patch To Tackle BlackBerry QNX Flaw

Cars and medical devices at risk from a serious vulnerability in the BlackBerry QNX operating system, US federal agencies warn

Collaboration Suites

Google Reveals ‘New Chapter’ For Bug Bounty Program

Google's 'vulnerability reward program' has found over 11,000 bugs and paid out $29m over past ten years, but now has a 'major makeover'

Microsoft Issues Emergency Patch For PrintNightmare Flaw

Emergency patch issued for “PrintNightmare” vulnerability that could allow hackers to remotely seize control of a PC via Print Spooler

Mobility

Apple iPhone Exploit Allows Users To ‘Jailbreak’ Devices

Fully updated Apple devices contain the exploit that allows the first public jailbreak for Apple's iOS operating system for nearly four years

coronavirus Image credit: World Health Organisation

Mobile Apps

Coronavirus: NHS Contact Tracing App Has Flaws, Aussie Researchers Warn

Security flaws in the NHS coronavirus contact-tracing app could pose risk to user privacy, as the NCSC promises to fix the issues

Mac

Thunderbolt Ports Vulnerable To Hackers

If a hacker gains physical access to your computer, the Thunderbolt port could be exploited to access the hard disc drive

CyberCrime

Apple Denies iPhone Mail Flaw Has Been Used In The Wild

Disputes claim by researcher ZecOps that the iPhone Mail flaws have been exploited at least six times against high-profile victims

CyberCrime

Critical ‘BlueFrag’ Bluetooth Vulnerability In Older Android OS

Security researchers ERNW identity critical vulnerability affecting the Android Bluetooth subsystem, which it is calling 'BlueFrag'

Networks

Citrix Flaw Opens Networks To Ransomware Risk

Hackers attempt to exploit critical flaw in Citrix ADC and Citrix Gateway to install 'Ragnarok' ransomware on vulnerable networks

CyberCrime

TikTok Fixes ‘Serious’ Security Flaws

Video-sharing firm TikTok says it has fixed serious vulnerabilities identified by security specialist Check Point, that were present for most of 2019

Mobility

Twitter Fixes Serious Security Glitch In Android App

Company urges Android users to update to latest version of app after finding bug that could allow account takeovers and information leaks

mobile OS

Apple iPhone 5 Users Warned To Update iOS Now, Or Lose Functionality

Users of older Apple devices warned to immediately update the iOS due to 'GPS time rollover issue'

Authentification

Samsung Patches Fingerprint Flaw With Galaxy S10

Update to fix problems with Samsung's fingerprint recognition feature as phone giant urges users to apply patch

CyberCrime

Intelligence Agencies Warn Of Flaw With VPN Products

Both the US NSA and UK NCSC warn hackers are actively exploiting vulnerabilities in VPN products

Security

Microsoft Patch Tuesday Fixes 59 Flaws

Nine critical flaws patched, and the good news is there no-zero-day flaws requiring system admin attention

CyberCrime

Amazon Promoted Webcams Vulnerable To Hackers, Warns Which?

Cheap home security cameras, webcams and baby monitors, promoted by Amazon, are riddled with security flaws

CyberCrime

US Revives Airplane Cybersecurity Bug Hunt

Department of Homeland Security revives program to identify cybersecurity flaws in modern aircraft

CyberCrime

Cisco Patches Critical Flaw That Allowed Root Access To Guest OS

Critical flaw in Cisco IOS software could allow hackers to access the Guest Operating System as root user

CyberCrime

Microsoft Issues Emergency Patch For IE

Emergency patch for Internet Explorer to stop attackers hijacking the web browser

Broadband

Multiple Vulnerabilities in D-Link, Comba Routers, Warns Trustwave

D-Link and Comba slated for poor response to discovery of multiple vulnerabilities found on their routers

CyberCrime

Google Warns Of ‘Sustained Effort’ To Hack Apple iPhones

Google's Project Zero warns of a 'sustained effort' to hack iPhones over past two years, via poisoned websites

CyberCrime

Researcher Releases Steam Vulnerability After Valve Ban

Researcher who clashed with Valve over Steam vulnerability, which then banned him, makes public the flaws

CyberCrime

Biometrics Database Breach Not So Big, Says Suprema

'Errr yes it was' security researchers insist, estimating that 'large amounts of biometrics data' has been exposed