FreshRSS

Zobrazení pro čtení

Jsou dostupné nové články, klikněte pro obnovení stránky.

Mac and Windows users infected by software updates delivered over hacked ISP

The words

Enlarge (credit: Marco Verch Professional Photographer and Speaker)

Hackers delivered malware to Windows and Mac users by compromising their Internet service provider and then tampering with software updates delivered over unsecure connections, researchers said.

The attack, researchers from security firm Volexity said, worked by hacking routers or similar types of device infrastructure of an unnamed ISP. The attackers then used their control of the devices to poison domain name system responses for legitimate hostnames providing updates for at least six different apps written for Windows or macOS. The apps affected were the 5KPlayer, Quick Heal, Rainmeter, Partition Wizard, and those from Corel and Sogou.

These aren’t the update servers you’re looking for

Because the update mechanisms didn’t use TLS or cryptographic signatures to authenticate the connections or downloaded software, the threat actors were able to use their control of the ISP infrastructure to successfully perform machine-in-the-middle (MitM) attacks that directed targeted users to hostile servers rather than the ones operated by the affected software makers. These redirections worked even when users employed non-encrypted public DNS services such as Google’s 8.8.8.8 or Cloudflare’s 1.1.1.1 rather than the authoritative DNS server provided by the ISP.

Read 12 remaining paragraphs | Comments

Troubling bird flu study suggests human cases are going undetected

Od: Beth Mole
Troubling bird flu study suggests human cases are going undetected

Enlarge (credit: Tony C. French/Getty)

A small study in Texas suggests that human bird flu cases are being missed on dairy farms where the H5N1 virus has taken off in cows, sparking an unprecedented nationwide outbreak.

The finding adds some data to what many experts have suspected amid the outbreak. But the authors of the study, led by researchers at the University of Texas Medical Branch in Galveston, went further, stating bluntly why the US is failing to fully surveil, let alone contain, a virus with pandemic potential.

"Due to fears that research might damage dairy businesses, studies like this one have been few," the authors write in the topline summary of their study, which was posted online as a pre-print and had not been peer-reviewed.

Read 12 remaining paragraphs | Comments

❌