Forwarded from The Hacker News
⚡ PyPI just killed a major supply chain threat.
Over 1,800 email addresses tied to expired domains have been unverified—closing a loophole attackers used to hijack Python packages.
It’s a win, but not a cure-all.
👉 Full story ↓ https://thehackernews.com/2025/08/pypi-blocks-1800-expired-domain-emails.html
Over 1,800 email addresses tied to expired domains have been unverified—closing a loophole attackers used to hijack Python packages.
It’s a win, but not a cure-all.
👉 Full story ↓ https://thehackernews.com/2025/08/pypi-blocks-1800-expired-domain-emails.html
Forwarded from The Hacker News
Russia’s Secret Blizzard just did something scarier than phishing → They hacked the root of trust—bypassing MFA and silently stealing “secure” traffic.
When TLS itself is broken, FIDO and MFA collapse.
How to defend against state-level attacks ↓ https://thehackernews.com/expert-insights/2025/08/how-to-defend-against-root-of-trust.html
When TLS itself is broken, FIDO and MFA collapse.
How to defend against state-level attacks ↓ https://thehackernews.com/expert-insights/2025/08/how-to-defend-against-root-of-trust.html
Forwarded from The Hacker News
The U.K. just dropped its demand that Apple build a backdoor into iCloud.
That order would’ve opened Americans’ encrypted data to governments—and hackers.
The plan’s dead. But the fight over encryption isn’t.
Here’s what happened → https://thehackernews.com/2025/08/uk-government-drops-apple-encryption.html
That order would’ve opened Americans’ encrypted data to governments—and hackers.
The plan’s dead. But the fight over encryption isn’t.
Here’s what happened → https://thehackernews.com/2025/08/uk-government-drops-apple-encryption.html
Forwarded from The Hacker News
🚨 Hackers are chaining two SAP flaws (CVSS 10.0 + 9.1) to bypass login and fully take over systems.
Ransomware crews + China-linked spies are already using it in the wild.
SAP patched in April/May—but attackers were exploiting since March.
Details here → https://thehackernews.com/2025/08/public-exploit-for-chained-sap-flaws.html
Ransomware crews + China-linked spies are already using it in the wild.
SAP patched in April/May—but attackers were exploiting since March.
Details here → https://thehackernews.com/2025/08/public-exploit-for-chained-sap-flaws.html
Forwarded from The Hacker News
🚨 60% of breaches in 2024 came from one source: people.
Not because employees are careless—because security is confusing, complex, and built for auditors, not humans. Until culture is fixed, tech alone won’t save you.
Here’s how to change that ↓ https://thehackernews.com/2025/08/why-your-security-culture-is-critical.html
Not because employees are careless—because security is confusing, complex, and built for auditors, not humans. Until culture is fixed, tech alone won’t save you.
Here’s how to change that ↓ https://thehackernews.com/2025/08/why-your-security-culture-is-critical.html
Forwarded from The Hacker News
🚨 New RAT alert: Hackers are hitting trading firms with GodRAT—a backdoor hidden inside fake financial docs sent over Skype.
It steals files, passwords, and even drops more malware.
Built on 20-year-old Gh0st RAT code, but deadlier.
Full details → https://thehackernews.com/2025/08/new-godrat-trojan-targets-trading-firms.html
It steals files, passwords, and even drops more malware.
Built on 20-year-old Gh0st RAT code, but deadlier.
Full details → https://thehackernews.com/2025/08/new-godrat-trojan-targets-trading-firms.html
Forwarded from The Hacker News
Hackers are breaking into Linux cloud servers using a 2-year-old bug in Apache ActiveMQ.
The twist? After sneaking in, they patch the flaw themselves—locking out rivals and hiding from defenders.
Full story here → https://thehackernews.com/2025/08/apache-activemq-flaw-exploited-to.html
The twist? After sneaking in, they patch the flaw themselves—locking out rivals and hiding from defenders.
Full story here → https://thehackernews.com/2025/08/apache-activemq-flaw-exploited-to.html
Forwarded from Gizchina.com
UMIDIGI Prepares A78 With UNISOC T7300, Aiming to Redefine 4G Smartphones https://www.gizchina.com/umidigi/umidigi-prepares-a78-with-unisoc-t7300-aiming-to-redefine-4g-smartphones
Gizchina
UMIDIGI A78 Coming With UNISOC T7300, Aiming to Redefine 4G Smartphones
UMIDIGI A78 leak suggests a UNISOC T7300 chip, 120Hz display, big battery, and rugged design — making 4G phones exciting again.
Forwarded from Gizchina.com
Ulefone Returns to IFA 2025 With New AI-Powered Rugged Flagships and the All-New RugKing Series https://www.gizchina.com/ulefone/ulefone-returns-to-ifa-2025-with-new-ai-powered-rugged-flagships-and-the-all-new-rugking-series
Gizchina
Ulefone Celebrates 10 Years of Rugged Innovation with AI Pro at IFA 2025
Ulefone is set to unveil its AI-powered rugged lineup at IFA 2025, including the new RugKing, Armor 34, 30, and 28 series.
Forwarded from Tech & Leaks Zone
Qualcomm Announced 7s Gen 4 which is just a lazy cosplay of 7s Gen 3
7s Gen 3 was announced last year by Qualcomm and is used in devices like Realme 13 series, Nothing Phone 3a series, Redmi Note 14 Pro/ Pro Plus etc. The part number is SM-7635 & its manufactured by TSMC on its 4nm process
• 1x Cortex-A720 @ 2.5GHz
• 3x Cortex-A720 @ 2.4GHz
• 4x Cortex-A520 @ 1.8GHz
Now, this 7s Gen 4 is exactly same as the 7s Gen 3 except, the 1x cortex-A720 now runs at 2.7GHz clock speed, which means, 7s Gen 4 is just 0.2GHz faster than last year's 7s Gen 3.
Qualcomm is even proudly marketing it as JUST 7% Faster CPU & GPU when compared with 7s Gen 3
Qualcomm usually releases chips in AC and AB versions where AC means overclocked or better binned ones, marking the chip with an ' * ' to show that the same chip is also available in different clock speeds. But this time, instead of marking the 7s Gen 3 variants, Qualcomm just renamed the overclocked version as 7s Gen 4 to fool users into thinking something new as come and the part number of 7s Gen 4 is also SM-7635-AC.
The first device to use this chip will be ofcourse Redmi Note 15 Pro/ Pro Plus. So, in reality, there is NO processor upgrade from Redmi Note 14 Pro while Xiaomi will market it as a new chip.
Follow @TechLeaksZone
7s Gen 3 was announced last year by Qualcomm and is used in devices like Realme 13 series, Nothing Phone 3a series, Redmi Note 14 Pro/ Pro Plus etc. The part number is SM-7635 & its manufactured by TSMC on its 4nm process
• 1x Cortex-A720 @ 2.5GHz
• 3x Cortex-A720 @ 2.4GHz
• 4x Cortex-A520 @ 1.8GHz
Now, this 7s Gen 4 is exactly same as the 7s Gen 3 except, the 1x cortex-A720 now runs at 2.7GHz clock speed, which means, 7s Gen 4 is just 0.2GHz faster than last year's 7s Gen 3.
Qualcomm is even proudly marketing it as JUST 7% Faster CPU & GPU when compared with 7s Gen 3
Qualcomm usually releases chips in AC and AB versions where AC means overclocked or better binned ones, marking the chip with an ' * ' to show that the same chip is also available in different clock speeds. But this time, instead of marking the 7s Gen 3 variants, Qualcomm just renamed the overclocked version as 7s Gen 4 to fool users into thinking something new as come and the part number of 7s Gen 4 is also SM-7635-AC.
The first device to use this chip will be ofcourse Redmi Note 15 Pro/ Pro Plus. So, in reality, there is NO processor upgrade from Redmi Note 14 Pro while Xiaomi will market it as a new chip.
Follow @TechLeaksZone
Forwarded from Hacker News
www.binarly.io
Persistent Risk: XZ Utils Backdoor Still Lurking in Docker Images
In this blog, we share a new finding in the XZ Utils saga: several Docker images built around the time of the compromise contain the backdoor. At first glance, this might not seem alarming: if the distribution packages were backdoored, then any Docker images…
Forwarded from Hacker News
freeCodeCamp.org
How to Free Up and Automatically Manage Disk Space for WSL on Windows 10/11
Windows Subsystem for Linux (WSL) lets you run a Linux environment directly on Windows. This is particularly useful for web development where you can develop and test applications in a Linux environment without leaving Windows. You can even run freeC...
Forwarded from Hacker News