Thursday, June 1, 2023
Home Reddit

Reddit

Top scoring links for the week for the most popular subreddits on information security

Bightdata.com attempting to trick child into sharing device resources

My 5-year old daughter has a Kids Fire tablet, which is only used for playing games. Have been used to seeing the shady developer tricks in trying to trick kids into hitting in-game purchases, but have locked down their...

Hacking my “smart” toothbrush

submitted by /u/DrinkMoreCodeMore

Windows os with telemetry removed.

Apologies if this is repetitive but i remember coming across repurposed windows 10/11 had completely removed telemetry, un-necessary processes. Kindly help submitted by /u/JyeshthBhrata

The Gemini protocol seen by this HTTP client person

submitted by /u/Xadartt

Return-Oriented Programming (ROP) Exploits

submitted by /u/0x5FC3

Securing PDF Generators Against SSRF Vulnerabilities

submitted by /u/AffectionateOrchid10

UnlimitedGPT now lets you automate most things on the ChatGPT website! Get user data, switch accounts, clear all conversations, switch themes, get messages much more faster than before, logout of current accounts, imitate human...

Hey guys! I'm proud to announce the release of UnlimitedGPT version 0.0.9! This release is very big, as it brings many new functions to life, as well as some changes to the codebase, new objects for easy data access,...
SC Magazine

We need to refine and secure AI, not turn our backs on the technology 

While the potential poisoning of ChatGPT raises some concerns, we need to take this threat as an opportunity to better refine and secure emerging AI models.
The Hacker News

Active Mirai Botnet Variant Exploiting Zyxel Devices for DDoS Attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw in Zyxel gear to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. Tracked as CVE-2023-28771 (CVSS score: 9.8), the issue relates to a command injection flaw impacting...
The Hacker News

Urgent WordPress Update Fixes Critical Flaw in Jetpack Plugin on Million of Sites

WordPress has issued an automatic update to address a critical flaw in the Jetpack plugin that’s installed on over five million sites. The vulnerability, which was unearthed during an internal security audit, resides in an API present in the plugin since version 2.0,...
The Register

Dark Pink cyber-spies add info stealers to their arsenal, notch up more victims

Not to be confused with K-Pop sensation BLACKPINK, gang pops military, govt and education orgs Dark Pink, a suspected nation-state-sponsored cyber-espionage group, has expanded its list of targeted organizations, both geographically and by sector, and has carried out at...
The Register

Feds, you’ll need a warrant for that cellphone border search

Here's a story with a twist A federal district judge has ruled that authorities must obtain a warrant to search an American citizen's cellphone at the border, barring exigent circumstances.…