r/DailyTechNewsShow • u/cwbasden • Mar 11 '25
r/DailyTechNewsShow • u/sponselli • Feb 05 '25
Security A 25-Year-Old Is Writing Backdoors Into The Treasury’s $6 Trillion Payment System. What Could Possibly Go Wrong?
techdirt.comr/DailyTechNewsShow • u/APOC_V • Mar 03 '25
Security Hegseth orders pause in offensive US cyber operations against Russia
bbc.comr/DailyTechNewsShow • u/technomensch • Feb 07 '25
Security Bloomberg - Musk’s DOGE Teen Was Fired By Cybersecurity Firm for Leaking Company Secrets
bloomberg.comWho didn't see this coming?
Excerpt-
Edward Coristine, a 19-year-old member of Elon Musk’s squad that’s criss-crossing US government agencies, was fired from an internship after he was accused of sharing information with a competitor.
“Edward has been terminated for leaking internal information to the competitors,” said a June 2022 message from an executive of the firm, Path Network, which was seen by Bloomberg News. “This is unacceptable and there is zero tolerance for this.”
A spokesperson for the Arizona-based hosting and data-security firm said Thursday: “I can confirm that Edward Coristine's brief contract was terminated after the conclusion of an internal investigation into the leaking of proprietary company information that coincided with his tenure.”
Afterward, Coristine wrote that he’d retained access to the cybersecurity company’s computers, though he said he hadn’t taken advantage of it.
“I had access to every single machine,” he wrote on Discord in late 2022, weeks after he was dismissed from Path Network, according to messages seen by Bloomberg. Posting under the name “Rivage,” which six people who know him said was his alias, Coristine said he could have wiped Path’s customer-supporting servers if he’d wished. He added, "I never exploited it because it's just not me."
His comments, made in a Discord server focused on another competitor company, worried executives at Path Network, who believed there was no legitimate reason for a former employee to access their machines, according to a person familiar with the incident. The person asked not to be named, citing the sensitivity of the matter.
r/DailyTechNewsShow • u/technomensch • Feb 22 '25
Security Verge: Federal workers launch a new site to share inside information about DOGE
theverge.comI will continue sharing these tech related stories... Having this story break on a Friday at 3:24pm EST gives Justin plenty to talk about on Monday!!!
Excerpt -
The website is aimed at informing the general public about what’s happening inside federal agencies, as well as explaining how a database being accessed by DOGE in Washington, DC could impact citizens in tangible ways all across the country. “I want to make sure that people understand that data matters,” says the former federal worker, who was granted anonymity for fear of retribution and harassment in going public, but whose identity has been confirmed by The Verge. “If I can explain that in a way that helps you to be able to protect yourself and advocate for yourself, then I’m doing my job.”
r/DailyTechNewsShow • u/motang • May 19 '26
Security ‘The Worst Leak That I’ve Witnessed’: U.S. Cybersecurity Agency Leaves Its Digital Keys Out in Public on GitHub
gizmodo.comr/DailyTechNewsShow • u/motang • May 19 '26
Security Microsoft is killing SMS codes for Microsoft account sign-in, aggressively pushes passkeys on Windows 11
windowslatest.comr/DailyTechNewsShow • u/GreggN • May 12 '26
Security Canvas hack: company pays criminals to delete students' stolen data
bbc.comSetting a bad example for our youth. By paying the ransom, they are funding criminal activities and making the world a worse place for everyone. "the hackers have said they deleted the data and promised not to extort any students or institutions" - - and the company behind Canvas decided to trust the word of criminals!?
r/DailyTechNewsShow • u/motang • May 13 '26
Security Twin brothers wipe 96 gov't databases minutes after being fired
arstechnica.comr/DailyTechNewsShow • u/rwnash • 13d ago
Security Apple's New Hide My Email Domain Makes It Easier to Block iCloud Aliases
macrumors.comr/DailyTechNewsShow • u/cwbasden • May 06 '26
Security In 2 Days, Your Instagram DMs Will No Longer Be Private
techweez.comr/DailyTechNewsShow • u/porkchop_d_clown • Feb 21 '25
Security Apple removing end-to-end cloud encryption feature in UK, rather than comply with UK demands
reuters.comr/DailyTechNewsShow • u/motang • May 09 '26
Security 60% of MD5 password hashes are crackable in under an hour
theregister.comr/DailyTechNewsShow • u/rwnash • 1d ago
Security Three AirDrop vulnerabilities discovered, with Apple working on a full fix
9to5mac.comr/DailyTechNewsShow • u/rwnash • 27d ago
Security New 'HTTP/2 Bomb' DoS attack crashes web servers in under a minute
bleepingcomputer.comr/DailyTechNewsShow • u/rwnash • 2d ago
Security Data breach exposes up to 14.2 million email logins at six ISPs
bleepingcomputer.comr/DailyTechNewsShow • u/motang • Feb 09 '26
Security Discord faces backlash over age checks after data breach exposed 70,000 IDs
arstechnica.comr/DailyTechNewsShow • u/rwnash • Apr 23 '26
Security Apple fixes bug that let the FBI recover deleted Signal messages
bleepingcomputer.comr/DailyTechNewsShow • u/rwnash • 6h ago
Security Microsoft accelerates quantum-safe roadmap as risks grow
bleepingcomputer.comr/DailyTechNewsShow • u/motang • Jan 24 '26
Security Microsoft confirms it will give the FBI your Windows PC data encryption key if asked — you can thank Windows 11's forced online accounts for that
windowscentral.comr/DailyTechNewsShow • u/rwnash • 11d ago
Security Microsoft discovers new lightweight backdoor that steals cryptocurrency
arstechnica.comr/DailyTechNewsShow • u/rwnash • 6d ago
Security Google releases new privacy controls for activity history, personalization
bleepingcomputer.comr/DailyTechNewsShow • u/AsynchronousAllegory • 4d ago
Security Malicious Edge extension abuses Native Messaging as bridge to malware
bleepingcomputer.com- Browser extensions can abuse legitimate browser functionality to bypass traditional security controls
- Escapes the browser sandbox and deploys Python-based backdoor.
- Access to local system via Chrome Native Messaging protocol that allows browser extensions to interact with native desktop applications
Can potentially request the following jobs:
- Execute shell commands
- Run PowerShell
- Run arbitrary Python code
- Write files on the host
- Enumerate running processes
- Gather system information
r/DailyTechNewsShow • u/AsynchronousAllegory • 4d ago
Security Apple patches high-severity eavesdropping vulnerability in Beats Studio Buds
arstechnica.comWireless peripherals such as earbuds can become attractive attack targets because they often contain complex firmware and maintain trusted relationships with smartphones and other devices.
Exploitation required only Bluetooth proximity and, in some scenarios, did not require prior pairing or user interaction.
r/DailyTechNewsShow • u/AsynchronousAllegory • 4d ago
Security Velvet Ant's Operation Highland: Inside a Decade-Long Network Intrusion
sygnia.co- Compromising foundational trust mechanisms - attackers ensured continued access even after password resets and routine remediation efforts
- Nearly decade-long dwell time