New DNS Vulnerability Lets Attackers Launch Large-Scale DDoS Attacks

Israeli cybersecurity researchers have disclosed details about a new flaw impacting DNS protocol that can be exploited to launch amplified, large-scale distributed denial-of-service (DDoS) attacks to takedown targeted websites. Called NXNSAttack, the flaw hinges on the DNS delegation mechanism to force DNS resolvers to generate more DNS queries to authoritative servers of attacker’s choice, potentially…

Freedom oranges and avocado toast

Coronavirus in Context is a weekly newsletter where we bring you facts that matter about the COVID-19 pandemic and the technology trying to stop its spread. You can subscribe here. Hola pandemic pals, Remember when everyone was ripping on millennials for eating avocado toast? The big idea was that they were spoiled because they smeared expensive fruit on their…

Brazil’s Biggest Cosmetic Brand Natura Exposes Personal Details of Its Users

Brazil’s biggest cosmetics company Natura accidentally left hundreds of gigabytes of its customers’ personal and payment-related information publicly accessible online that could have been accessed by anyone without authentication. SafetyDetective researcher Anurag Sen last month discovered two unprotected Amazon-hosted servers—with 272GB and 1.3TB in size—belonging to Natura that consisted of more than 192 million records.…