Security News > 2021

Bad news for lockdown slimmers who've ignored advice about not needing to connect every friggin' appliance in their home to the internet: Talos researchers have sniffed out security flaws allowing attackers to hijack your air fryer. Specifically, Cisco's infosec arm said it had tested and confirmed that the Cosori Smart 5.8-Quart Air Fryer CS158-AF, version 1.1.0, could be exploited by a theoretical fried-chicken-hater.

Bad news for lockdown slimmers who've ignored advice about not needing to connect every friggin' appliance in their home to the internet: Talos researchers have sniffed out security flaws allowing attackers to hijack your air fryer. Specifically, Cisco's infosec arm said it had tested and confirmed that the Cosori Smart 5.8-Quart Air Fryer CS158-AF, version 1.1.0, could be exploited by a theoretical fried-chicken-hater.

Mastercard on Monday announced that it's acquiring digital identity verification company Ekata for $850 million. The acquisition of Seattle-based Ekata is part of Mastercard's plan to boost its identity verification capabilities.

It's fairly clear that since then Russia is taking the necessary legal legislative steps and actions to start carving it's self out of the "All roads lead to Rome" or more correctly Washington of the Internet. I've spent more than two decades warning about what is happening and the most likely out come.

A large-scale scam campaign targeting Facebook Messenger users all over the world has been detected by Group-IB. Digital Risk Protection analysts have found evidence proving that users in over 80 countries in Europe, Asia, the MEA region, North and South America might have been affected. In April, the number of Facebook posts inviting users to install "The latest Messenger update" reached 5,700.

In new reporting by Reuters, investigators have stated that hundreds of customer networks have been breached in the incident, expanding the scope of this system breach beyond just Codecov's systems. As reported by BleepingComputer last week, Codecov had suffered a supply-chain attack that went undetected for over 2-months.

In new reporting by Reuters, investigators have stated that hundreds of customer networks have been breached in the incident, expanding the scope of this system breach beyond just Codecov's systems. As reported by BleepingComputer last week, Codecov had suffered a supply-chain attack that went undetected for over 2-months.

Hackers linked with the North Korean government applied the web skimming technique to steal cryptocurrency in a previously undocumented campaign that started early last year, researchers say. The attacks compromised customers of at least three online stores and relied on infrastructure used for web skimming activities and attributed in the past to Lazarus APT, also known as Hidden Cobra.

The Bank of England and HM Treasury have formed a Taskforce to "Coordinate the exploration of a potential UK Central Bank Digital Currency". A Bank of England announcement quickly points out that no decision has been taken to greenlight Britcoin and omits any mention of why the time is right to ponder a digital currency.

Accurately summarizing the complexities of this implementation process, the National Security Agency released its latest government and industry guidance on the importance of integrating zero trust security. As zero trust is a model, not a single technology or a product, the mindset required for zero trust must be embraced for any implementation to be successful.