New USBCulprit Espionage Tool Steals Data From Air-Gapped Computers

A Chinese threat actor has developed new capabilities to target air-gapped systems in an attempt to exfiltrate sensitive data for espionage, according to a newly published research by Kaspersky yesterday. The APT, known as Cycldek, Goblin Panda, or Conimes, employs an extensive toolset for lateral movement and information stealing in victim networks, including previously unreported…

Page Experience and Core Web Vitals

Last updated on June 4, 2020 at 06:45 pm Just a week ago, Google announced a new update that will effectively help them gauge how users experience your pages. The new update will include their old user experience factors such as page speed and mobile-friendliness which will be incorporated into the new Core Web Vitals they released…

Newly Patched SAP ASE Flaws Could Let Attackers Hack Database Servers

A new set of critical vulnerabilities uncovered in SAP’s Sybase database software can grant unprivileged attackers complete control over a targeted database and even the underlying operating system in certain scenarios. The six flaws, disclosed by cybersecurity firm Trustwave today, reside in Sybase Adaptive Server Enterprise (ASE), a relational database management software geared towards transaction-based…

This $350M ‘quant fund’ played the stock market using real-time data — then 2020 happened

Coatue’s $350 million data-driven ‘quant fund’ made a swift exit from the market in early April — having realised the coronavirus pandemic had rendered its algorithm unreliable, Business Insider reports. The tech-focused fund, launched by billionaire Philippe Laffont just over one year ago, joins a growing list of “quant funds” to have failed to turn a…

Two Critical Flaws in Zoom Could’ve Let Attackers Hack Systems via Chat

If you’re using Zoom—especially during this challenging time to cope with your schooling, business, or social engagement—make sure you are running the latest version of the widely popular video conferencing software on your Windows, macOS, or Linux computers. No, it’s not about the arrival of the most-awaited “real” end-to-end encryption feature, which apparently, according to…