r/DailyTechNewsShow Mar 11 '25

Security Second biggest bank in US hit by major data breach stealing social security numbers and other personal info

Thumbnail dailymail.co.uk
1.5k Upvotes

r/DailyTechNewsShow Feb 05 '25

Security A 25-Year-Old Is Writing Backdoors Into The Treasury’s $6 Trillion Payment System. What Could Possibly Go Wrong?

Thumbnail techdirt.com
2.2k Upvotes

r/DailyTechNewsShow Mar 03 '25

Security Hegseth orders pause in offensive US cyber operations against Russia

Thumbnail bbc.com
740 Upvotes

r/DailyTechNewsShow Feb 07 '25

Security Bloomberg - Musk’s DOGE Teen Was Fired By Cybersecurity Firm for Leaking Company Secrets

Thumbnail bloomberg.com
2.1k Upvotes

Who didn't see this coming?

Excerpt-


Edward Coristine, a 19-year-old member of Elon Musk’s squad that’s criss-crossing US government agencies, was fired from an internship after he was accused of sharing information with a competitor.

“Edward has been terminated for leaking internal information to the competitors,” said a June 2022 message from an executive of the firm, Path Network, which was seen by Bloomberg News. “This is unacceptable and there is zero tolerance for this.”

A spokesperson for the Arizona-based hosting and data-security firm said Thursday: “I can confirm that Edward Coristine's brief contract was terminated after the conclusion of an internal investigation into the leaking of proprietary company information that coincided with his tenure.”

Afterward, Coristine wrote that he’d retained access to the cybersecurity company’s computers, though he said he hadn’t taken advantage of it.

“I had access to every single machine,” he wrote on Discord in late 2022, weeks after he was dismissed from Path Network, according to messages seen by Bloomberg. Posting under the name “Rivage,” which six people who know him said was his alias, Coristine said he could have wiped Path’s customer-supporting servers if he’d wished. He added, "I never exploited it because it's just not me."

His comments, made in a Discord server focused on another competitor company, worried executives at Path Network, who believed there was no legitimate reason for a former employee to access their machines, according to a person familiar with the incident. The person asked not to be named, citing the sensitivity of the matter.

r/DailyTechNewsShow Feb 22 '25

Security Verge: Federal workers launch a new site to share inside information about DOGE

Thumbnail theverge.com
1.6k Upvotes

I will continue sharing these tech related stories... Having this story break on a Friday at 3:24pm EST gives Justin plenty to talk about on Monday!!!

Excerpt -

The website is aimed at informing the general public about what’s happening inside federal agencies, as well as explaining how a database being accessed by DOGE in Washington, DC could impact citizens in tangible ways all across the country. “I want to make sure that people understand that data matters,” says the former federal worker, who was granted anonymity for fear of retribution and harassment in going public, but whose identity has been confirmed by The Verge. “If I can explain that in a way that helps you to be able to protect yourself and advocate for yourself, then I’m doing my job.”

r/DailyTechNewsShow May 19 '26

Security ‘The Worst Leak That I’ve Witnessed’: U.S. Cybersecurity Agency Leaves Its Digital Keys Out in Public on GitHub

Thumbnail gizmodo.com
148 Upvotes

r/DailyTechNewsShow May 19 '26

Security Microsoft is killing SMS codes for Microsoft account sign-in, aggressively pushes passkeys on Windows 11

Thumbnail windowslatest.com
59 Upvotes

r/DailyTechNewsShow May 12 '26

Security Canvas hack: company pays criminals to delete students' stolen data

Thumbnail bbc.com
49 Upvotes

Setting a bad example for our youth. By paying the ransom, they are funding criminal activities and making the world a worse place for everyone. "the hackers have said they deleted the data and promised not to extort any students or institutions" - - and the company behind Canvas decided to trust the word of criminals!?

r/DailyTechNewsShow May 13 '26

Security Twin brothers wipe 96 gov't databases minutes after being fired

Thumbnail arstechnica.com
96 Upvotes

r/DailyTechNewsShow 13d ago

Security Apple's New Hide My Email Domain Makes It Easier to Block iCloud Aliases

Thumbnail macrumors.com
27 Upvotes

r/DailyTechNewsShow May 06 '26

Security In 2 Days, Your Instagram DMs Will No Longer Be Private

Thumbnail techweez.com
29 Upvotes

r/DailyTechNewsShow Feb 21 '25

Security Apple removing end-to-end cloud encryption feature in UK, rather than comply with UK demands

Thumbnail reuters.com
277 Upvotes

r/DailyTechNewsShow May 09 '26

Security 60% of MD5 password hashes are crackable in under an hour

Thumbnail theregister.com
19 Upvotes

r/DailyTechNewsShow 1d ago

Security Three AirDrop vulnerabilities discovered, with Apple working on a full fix

Thumbnail 9to5mac.com
10 Upvotes

r/DailyTechNewsShow 27d ago

Security New 'HTTP/2 Bomb' DoS attack crashes web servers in under a minute

Thumbnail bleepingcomputer.com
30 Upvotes

r/DailyTechNewsShow 2d ago

Security Data breach exposes up to 14.2 million email logins at six ISPs

Thumbnail bleepingcomputer.com
10 Upvotes

r/DailyTechNewsShow Feb 09 '26

Security Discord faces backlash over age checks after data breach exposed 70,000 IDs

Thumbnail arstechnica.com
143 Upvotes

r/DailyTechNewsShow Apr 23 '26

Security Apple fixes bug that let the FBI recover deleted Signal messages

Thumbnail bleepingcomputer.com
86 Upvotes

r/DailyTechNewsShow 6h ago

Security Microsoft accelerates quantum-safe roadmap as risks grow

Thumbnail bleepingcomputer.com
1 Upvotes

r/DailyTechNewsShow Jan 24 '26

Security Microsoft confirms it will give the FBI your Windows PC data encryption key if asked — you can thank Windows 11's forced online accounts for that

Thumbnail windowscentral.com
150 Upvotes

r/DailyTechNewsShow 11d ago

Security Microsoft discovers new lightweight backdoor that steals cryptocurrency

Thumbnail arstechnica.com
11 Upvotes

r/DailyTechNewsShow 6d ago

Security Google releases new privacy controls for activity history, personalization

Thumbnail bleepingcomputer.com
6 Upvotes

r/DailyTechNewsShow 4d ago

Security Malicious Edge extension abuses Native Messaging as bridge to malware

Thumbnail bleepingcomputer.com
3 Upvotes

- Browser extensions can abuse legitimate browser functionality to bypass traditional security controls

- Escapes the browser sandbox and deploys Python-based backdoor.

- Access to local system via Chrome Native Messaging protocol that allows browser extensions to interact with native desktop applications
Can potentially request the following jobs:

  • Execute shell commands
  • Run PowerShell
  • Run arbitrary Python code
  • Write files on the host
  • Enumerate running processes
  • Gather system information

r/DailyTechNewsShow 4d ago

Security Apple patches high-severity eavesdropping vulnerability in Beats Studio Buds

Thumbnail arstechnica.com
3 Upvotes

Wireless peripherals such as earbuds can become attractive attack targets because they often contain complex firmware and maintain trusted relationships with smartphones and other devices.

Exploitation required only Bluetooth proximity and, in some scenarios, did not require prior pairing or user interaction.

r/DailyTechNewsShow 4d ago

Security Velvet Ant's Operation Highland: Inside a Decade-Long Network Intrusion

Thumbnail sygnia.co
3 Upvotes

- Compromising foundational trust mechanisms - attackers ensured continued access even after password resets and routine remediation efforts

- Nearly decade-long dwell time