A teen took control of a Tesla by hacking a third-party app


friday, russia Did something unimaginable before: actually caught a bunch of ransomware operators.Not only that, but Member of the notorious group REvil, which was behind some of the biggest attacks of the past few years, including IT management companies Kasaya and meat giant JBS. Russian President Vladimir Putin has previously Give ransomware hackers a free pass. It’s unclear whether this was a deliberate political move, a sign of a broader crackdown, or both, but it was certainly a watershed moment.

when everyone is scrambling Find Log4j in their system-No Even well-resourced companies can easily get the job done-This FTC sets strict deadlines for patching very bad, no good holes in the ubiquitous logging library. It’s unlikely that everyone will find it in time, which says more about the fragile and opaque nature of the open source software world than the FTC’s aggressive timeline.

Telecom around the world has Against Apple’s Private Relay, an incomplete VPN that bounces your traffic through several servers to give you extra anonymity. T-Mobile in the US recently blocked it for customers with parental control filters.It’s unclear why they took these steps against Apple and not against Lots and lots of unrestricted VPNs, but this may be related to the potential size of Apple customers who might sign up for the service.

In other Apple privacy news, Comes with iOS 15 A new report that shows you which sensors your apps are accessing and which domains they are contacting. contains a lot of information at once; We helped break down how to read it.

In 2021, North Korean hackers ushered in the “Year of the Flag”, Nearly $400 million in cryptocurrency stolen. While Israeli spyware vendor NSO Group insists it has controls in place to prevent misuse of its products, Equipment of dozens of journalists and activists in El Salvador infected with Pegasus, NSO’s signature product, just in November.

That’s not all! Every week we round up all the security news that WIRED doesn’t cover in depth. Click on the title to read the full text.

This week, a 19-year-old security researcher named David Colombo detailed how he was able to remotely unlock doors, open windows, play music and start keyless driving for dozens of Tesla vehicles. The vulnerability he exploited was not in the Tesla software itself, but in a third-party application. There are some limits to what Colombo can accomplish; he can’t do anything in steering, acceleration or deceleration. But he was able to obtain a wealth of sensitive data about the affected vehicles.Cars are computers now, maybe Tesla is like that, which means they have computer problems like Third-party software causing major problems.

More than 70 official Ukrainian government websites were breached this week with a notice that people should “prepare for the worst” as tensions mount on the Russia-Ukrainian border. While it’s easy to assume that this was the work of the Russian government, this was not a particularly sophisticated hack, despite its wide reach and high profile. (This is not to say no Russia; impossible to know now. ) White House also Warning this week Russia is planning a “false flag” to justify the invasion, so there may be more to come.

This US has yet to accept Covid-19 contact tracing application despite Core functionality built into every iOS and Android phone. However, adoption in other countries is much broader. These include Germany, where police recently used data from the Luca contact-tracing app to determine who went to a particular restaurant on a particular night in November, and used the information to identify 21 potential witnesses. Law enforcement said they would no longer use the data after a public outcry. But at a time when public confidence in contact tracing is more important than ever, the incident represents exactly the worst that privacy advocates have warned.

This week, the developer behind two widely used open-source libraries effectively broke his own code, breaking thousands of projects in the process. These changes caused the application to print meaningless messages in an infinite loop. The developer seemed motivated to make a statement about major corporations profiting from his work for free, but in the process made the lives of users from all walks of life very miserable.


More great Wired stories



Source link

Recommended For You

About the Author: News Center