ThreatsHub Cybersecurity News

Our research reveals two significant vulnerabilities in Microsoft Azure Private 5G Core (AP5GC). The first vulnerability (CVE-2024-20685) allows a crafted signaling message to crash the control plane, leading to potential service outages. The second (ZDI-CAN-23960) disconnects and replaces attached base stations, disrupting network operations. While these issues are implementation-specific, their exploitation is made possible by a systemic weakness: the lack of mandatory authentication procedures between base stations and packet-cores. Read More HERE…

The Register

September 17, 2024 TH Author

VMware patches remote make-me-root holes in vCenter Server, Cloud Foundation

Bug reports made in China Broadcom has emitted a pair of patches for vulnerabilities in VMware vCenter Server that a miscreant with network access to the software could exploit to completely commandeer a system. This also affects Cloud Foundation.… READ MORE HERE…

ZDNet | Security

September 17, 2024 TH Author

Did ChatGPT just message you? Relax – it’s a bug, not a feature (for now)

How creepy is this? OpenAI’s chatbot was contacting users unprompted. The issue has been fixed.
READ MORE HERE…

ZDNet | Security

September 17, 2024 TH Author

Global telcos pledge to adopt responsible AI guidelines

GSMA releases a roadmap to guide mobile operators in assessing their use of artificial intelligence as widespread adoption proves to be difficult for most businesses.
READ MORE HERE…

Packet Storm

September 17, 2024 TH Author

Wait… Did Pagers Get Hacked To Blow People Up?

Predator Spyware Kingpins Added To US Sanctions List

Malware Attack Targets US-Taiwan Defense Conference

Forget AirTags: Tile’s new trackers come in all shapes and sizes (and an SOS button)

Made for wallets, keys, and even remote controls, Life360’s new line of Tile Bluetooth trackers helps you do much more than keep track of valuable items.
READ MORE HERE…

The Register

September 17, 2024 TH Author

China claims Starlink signals can reveal stealth aircraft – and what that really means

If this really was that useful, they wouldn’t be telling us According to a Chinese state-sanctioned study, signals from SpaceX Starlink broadband internet satellites could be used to track US stealth fighters, such as the F-22.… READ MORE HERE…

The Register

September 16, 2024 TH Author

The empire of C++ strikes back with Safe C++ blueprint

You pipsqueaks want memory safety? We’ll show you memory safety! We’ll borrow that borrow checker After two years of being beaten with the memory-safety stick, the C++ community has published a proposal to help developers write less vulnerable code.… READ MORE HERE…

Cyber Security Trending News

7 deprecated Linux commands you need to stop using – and what to use instead

Vulnerabilities in Cellular Packet Cores Part IV: Authentication

VMware patches remote make-me-root holes in vCenter Server, Cloud Foundation

Did ChatGPT just message you? Relax – it’s a bug, not a feature (for now)

Global telcos pledge to adopt responsible AI guidelines

Wait… Did Pagers Get Hacked To Blow People Up?

Predator Spyware Kingpins Added To US Sanctions List

Malware Attack Targets US-Taiwan Defense Conference

Forget AirTags: Tile’s new trackers come in all shapes and sizes (and an SOS button)

China claims Starlink signals can reveal stealth aircraft – and what that really means

The empire of C++ strikes back with Safe C++ blueprint