Microsoft Uncovers Flaws in ncurses Library Affecting Linux and macOS Systems

Sep 14, 2023THNEndpoint Security / Vulnerability A set of memory corruption flaws have been discovered in the ncurses (short for new curses) programming library that could be exploited by threat actors to run malicious code on vulnerable Linux and macOS systems. “Using environment variable poisoning, attackers could chain these vulnerabilities to elevate privileges and run…

Bose QuietComfort Ultra Headphones just revealed — release date, price, battery life and more

The Bose QuietComfort Ultra Headphones look like the brand’s most premium noise-cancelling cans yet. Replacing the Bose 700 as the company’s flagship, the QuietComfort Ultra ushers in a solid set of upgrades to rival the best headphones out now.  There are a few key ways that Bose modernized the QuietComfort Ultra Headphones. An emphasis on…

Free Download Manager Site Compromised to Distribute Linux Malware to Users for 3+ Years

Sep 14, 2023THNSupply Chain / Malware A download manager site served Linux users malware that stealthily stole passwords and other sensitive information for more than three years as part of a supply chain attack. The modus operandi entailed establishing a reverse shell to an actor-controlled server and installing a Bash stealer on the compromised system.…