Illegal Migration Bill breaches UK human rights obligations, MPs and peers warn
The Illegal Migration Bill breaches a number of the UK's human rights obligations, MPs and peers have warned ministers.Most asylum seekers arriving in the UK after the flagship legislation has been passed would have their claim declared inadmissible, according to a report published by Parliament's Joint Committee on Human Rights.
Ukrainians granted sanctuary in Britain sent to live with suspected gangsters
Ukrainian refugees in the Homes for Ukraine program were placed with suspected criminals, raising concerns about safeguarding and exploitation. [ more ]
Sadiq Khan announces funding to provide mentors to 100,000 young Londoners
S adiq Khan has announced funding to enable an unprecedented 100,000 young Londoners will have a mentor by the end of 2024, as part of a drive to reduce youth violence in the city.The Mayor says that a 10 million funding boost will allow a further 50,000 young people in the capital access to mentoring support.
Report reveals shocking' exploitation of migrant workers in London
A new report has revealed the shocking levels of exploitation and abuse suffered by migrant workers in the capital.Mayor Sadiq Khan, who commissioned the research, said its findings were consistent with modern slavery.The report found that migrant Londoners often work unpaid overtime, or are sometimes left waiting for months to receive wages for work they've done.
Rwanda plan puts modern slavery victims at further risk of exploitation - campaigners
Hostile immigration policies in the UK are putting asylum seekers at risk of exploitation by criminal gangs in the underground economy.
New data shows a spike in cases of modern slavery, with 591 cases recorded between January and March 2023, compared to 556 in the same period in 2022. [ more ]
Most carers not paid for travel time between appointments study
Three out of four care staff who look after people at home are not being paid for the time it takes them to travel between appointments, according to new research.Unison said its survey of more than 300 care workers across England revealed that employers are effectively breaking minimum wage laws, costing staff hundreds of pounds each month.
Temp Tags Begone! After Streetsblog Investigation, Texas Eliminates Paper License Plates - Streetsblog USA
One down, dozens more to go.Texas will eliminate temporary license plates - the paper versions of real plates that nefarious dealers and outright crooks around the country are selling to drivers to avoid speed cameras, commit other vehicular crimes or simply to keep driving if they lack insurance or a driver's license.
One Year after Devastating Floods Hit Eastern Kentucky, Appalshop Continues to Rise - Non Profit News | Nonprofit Quarterly
When the water came, Alex Gibson was prepared for, as he put it, "regular flooding."But regular flooding was not what surged through multiple counties in Eastern Kentucky in late July of 2022, killing over 40 people and displacing thousands from their homes.For five days, heavy rain struck an area already vulnerable from decades of exploitation.
Last month, in an interview about Warner Bros. Discovery's $50 million streaming profit in the first quarter of 2023, the company's chief executive, David Zaslav, told CNBC that he believed the Writers Guild of America strike would ultimately end because of a love for the business and a love for working.
Kate jokes about picking up tips on coping with stress
The Princess of Wales joked about needing to pick up some tips for stress management as she visited a child services group in Windsor.Kate spoke to parents at a drop-in health visitors clinic and a baby massage session at the Windsor Family Hub on Tuesday morning.She also joined a stress management course with mothers from the Punjabi community, and upon learning about the course said: I'll come here and pick up some tips!
Sunak WhatsApp mistake' has given Boris an opportunity, warns ex-No 10 chief
Rishi Sunak has made a big mistake by blocking the release of Boris Johnson's WhatsApps, giving the former prime minister a chance to enjoy a divisive row, a senior Tory peer has warned.Gavin Barwell, former No 10 chief of staff, said Mr Sunak was wrong to take legal action against the Covid inquiry because it had invited suspicion about the government's true motives for protecting the messages.
Meta turning a blind eye to child abuse with encryption plans minister
Meta is choosing to allow predators to operate with impunity by rolling out encrypted messaging despite an epidemic of child abuse, security minister Tom Tugendhat has said.He urged the social media giant which owns Facebook, Instagram and WhatsApp to introduce robust safety measures before extending end-to-end encryption to Facebook Messenger and Instagram Direct later this year to avoid a significant risk to child safety.
Ama Ata Aidoo, Groundbreaking Ghanaian Writer, Dies at 81
Ama Ata Aidoo, a Ghanaian playwright, author and activist who was hailed as one of Africa's leading literary lights as well as one of its most influential feminists, died on Wednesday.She was 81.Her family said in a statement that she died after a brief illness.The statement did not specify the cause or where she died.
What Succession' Tells Us About America A.I., in Perspective Image Credit...Doug Mills/The New York Times To the Editor: Re Agreement Is Reached to Increase Debt Limit, With Cuts in Spending (front page, May 28): The Republicans have done it again.They're putting the onus on the needy, the poor, but giving the wealthy a free ride.
"The usual champagne-socialist pomposity of Venice has been drowned out by a newfound openness"
Placing the Global South at the centre of this year's Venice Architecture Biennale created a spirit of openness and sincerity, write Ewa Effiom, Krish Nathaniel and Aoi Phillips in this review of the event.There are enough Pritzker and Stirling prizes to recognise built work in our industry.For the 18th iteration of the Venice Architecture Biennale, architecture's biggest festival of ideas, curator Lesley Lokko promotes the process of architecture to the same heights as its outputs.
Multiple arrests made, 13 victims saved in human trafficking investigation: Peel police | CBC News
Thirteen victims of human trafficking have been rescued from their alleged captors following a yearlong investigation in Mississauga, Peel Regional Police say.Det.David Laing, who led the operation, announced at a news conference Wednesday that five people were arrested, numerous charges laid and law enforcement officers also recovered drugs and other property.
Catalogue of failings in Home Office's flawed' asylum system revealed in UN report
A devastating catalogue of failings in the Home Office's flawed and inefficient asylum system has been uncovered in a damning UN report.The eight-month audit of the UK's asylum system by the UN Refugee Agency (UNHCR) picked apart the government's immigration policy to reveal a deeply dysfunctional department.
Anti-slavery helpline has busiest year ever as forced labour reports hit record high
Calls to the anti-slavery helpline are at a record high as reports of forced labour, domestic servitude and sex trafficking soar.More than 6,500 potential victims of modern slavery were identified last year a 116 per cent increase compared to 2021.In 2022, 7,315 calls were made to the phone line, operated by the charity Unseen, from victims, local government officials, NHS workers, businesses and others.
Number of potential modern slavery victims in England and Wales hits record high
The number of potential victims of modern slavery in England and Wales is at the highest levels since records began, according to official statistics.A total of 4,746 people were referred to the Home Office from January to March as potential victims of exploitation, figures show a rise of more than a quarter compared with the same period last year.
Episode 7: "A Prism."In the beginning, Faith thought Paulina was giving her a hot news tip about psychics and scams.Years of investigation revealed something else.Read the episode transcript.See all episodes and extras.By the time I made it back to Mexico in December 2010, I had already missed a lot of my tía Martha's last few months of life.
Paypal's Latest Report: $1 Billion in Crypto Assets, Holdings Are Predominantly BTC and ETH Bitcoin News
Payments behemoth Paypal has disclosed in a Form 10-Q financial report filed with the U.S. Securities and Exchange Commission (SEC) that it is holding nearly $1 billion in cryptocurrency assets.This news comes on the heels of Paypal's announcement that Venmo now facilitates external transfers of cryptocurrencies to wallets and exchange platforms.
The Guest by Emma Cline review strange depths and an arresting originality
Published in the run-up to summer, Emma Cline's second novel is probably what people mean when they talk about a beach read.Whereas her 2016 debut, The Girls, arrived on a tsunami of hype and hazy lyricism, The Guest is the more controlled work of a fine talent maturing on its own terms.Sultry and engrossing, with a note of menace, it's a gorgeously smart affair whose deceptive lightness conceals strange depths and an arresting originality.
Black Out nights at the theatre are vital to centre and celebrate Black audiences | Nadia Fall
Tambo & Bones is a bold and funny satire by the American playwright Dave Harris.I remember laughing out loud one moment and holding my breath the next when I first read it and wanted to put it on for an audience here in the UK.Harris explores race, including the exploitation of Black culture, with mischief and wit.
London drug dealer twins who exploited children in county lines operation jailed
T wo twin brothers who exploited children to sell drugs in a county lines operation have been jailed.Omar and Malik Aziz, 24, from Streatham, were jailed for three years and two months and nine years respectively on Tuesday at Kingston Crown Court.The brothers were arrested by officers investigating county lines drugs who raided an address in Hatfield, Hertfordshire, and found two missing London boys, aged 14 and 15.
Met officer who used call girls has key role in getting women into force
A high-flying Scotland Yard officer who was allowed to keep his job despite using prostitutes has a key role helping recruit women to the force, the Standard can reveal.Payments of hundreds of pounds to sex workers were uncovered when anti-corruption officers from the Met's Professional Standards unit seized his phone over an unrelated matter, which was later dropped.
Why we need a secure side door for encrypted apps, not a back door | Computer Weekly
There has been a significant uptick in interest in e2e encryption as the UK Government tries to establish "back doors" for messaging apps through the controversial Online Safety Bill.Now at the committee stage in the House of Lords, it remains to be seen what the outcome will be.What is certain is that the legislation has stoked the fire that is the privacy versus protection debate.
WordPress Plugin Vulnerability Exposed Ferrari Website to Hackers
A vulnerability discovered in the official website of luxury sports car maker Ferrari could have exposed potentially sensitive information, according to a cybersecurity firm.The issue was discovered in March by researchers at Char49, a company that provides penetration testing, auditing and training services.
The rise of identity-based cyber attacks and how to mitigate them
Identity-based cyber attacks are an increasing weapon of choice the more we work in a world increasingly reliant on identity-based authorization.This means, in essence, stealing or faking our passwords or other login credentials.In response, organizations are adding new layers of authentication, which, inevitably, cyber criminals work to find ways through or around.
CISA: Several Old Linux Vulnerabilities Exploited in Attacks
The US Cybersecurity and Infrastructure Security Agency (CISA) has added several Linux and Linux-related flaws to its known exploited vulnerabilities (KEV) catalog.The agency added seven new vulnerabilities to its KEV catalog on Friday: Ruckus AP remote code execution (CVE-2023-25717), Red Hat Polkit privilege escalation (CVE-2021-3560), Linux kernel privilege escalations (CVE-2014-0196 and CVE-2010-3904), Jenkins UI information disclosure (CVE-2015-5317), Apache Tomcat remote code execution (CVE-2016-8735), and an Oracle Java SE and JRockit issue (CVE-2016-3427).
Critical Siemens RTU Vulnerability Could Allow Hackers to Destabilize Power Grid
A critical vulnerability affecting some of Siemens' industrial control systems (ICS) designed for the energy sector could allow malicious hackers to destabilize a power grid, according to the researchers who found the security hole.The vulnerability, tracked as CVE-2023-28489, impacts the CPCI85 firmware of Sicam A8000 CP-8031 and CP-8050 products, and it can be exploited by an unauthenticated attacker for remote code execution.
Android Security Update Patches Kernel Vulnerability Exploited by Spyware Vendor
Google's Android security updates for May 2023 patch more than 40 vulnerabilities, including a kernel flaw exploited as a zero-day by a spyware vendor.The latest Android updates patch vulnerabilities in the framework, system, kernel, Arm, Imagination Technologies, MediaTek, Unisoc, and Qualcomm components.
CISA Warns of Attacks Exploiting Oracle WebLogic Vulnerability Patched in January
The US Cybersecurity and Infrastructure Security Agency (CISA) has added three vulnerabilities to its known exploited vulnerabilities catalog, including an Oracle WebLogic flaw patched by the vendor in January.There do not appear to be any public reports describing exploitation of the WebLogic vulnerability.
1 Million WordPress Sites Impacted by Exploited Plugin Vulnerability
Exploitation of a critical vulnerability in the Essential Addons for Elementor WordPress plugin began immediately after a patch was released, WordPress security firm Defiant warns.With over one million installations, the Essential Addons for Elementor plugin provides additional elements and extensions for the Elementor website building platform.
Private Tweets Exposed Due to Twitter Circle Security Bug
Twitter is informing users that tweets posted to their Circle, which should have only been seen by specified individuals, may have also been visible to others.Launched in August 2022, Twitter Circle allows users to share their thoughts with a smaller group - up to 150 selected users.In April, users started noticing that tweets that were meant to be shared only with members of their Circle were actually visible to other people, including people who were not even following them.
Lone child refugees stranded in Sudan may risk travelling to UK on small boats'
Lone child refugees stranded in Sudan could be forced to travel to the UK in small boats because British ministers are not helping those entitled to family reunion to escape the fighting, charities have warned.Asylum seekers granted refugee status in the UK are able to apply to bring their spouse, children or younger siblings one of the few safe and legal routes open to refugees.
Toronto's film and TV industry seeing impact of Hollywood writers' strike, official says | CBC News
A strike by Hollywood screenwriters has already shut down one "substantial" series that was being shot in Toronto, and the dispute will have an effect on the larger film and television industry here if it drags on, a city official says.Marguerite Pigott, film commissioner and director of entertainment industries for the city of Toronto, declined on Wednesday to name the production shut down.
As if two Ivanti vulnerabilities under explot wasn't bad enough, now there are 3
Mass exploitation has begun for a critical vulnerability in Ivanti's VPN software, which comes as two other vulnerabilities are already being exploited.
The new vulnerability, tracked as CVE-2024-21893, is a server-side request forgery that has seen a rapid increase in attacks since its disclosure. [ more ]
The pandemic ruined my A-levels now the marking boycott is leaving me without a degree | Kimi Chaddah
This year's graduations, universities claim, will be indistinguishable from those of previous years.Except there's one glaring problem: as a student there isn't much to celebrate.Currently, a marking and assessment boycott is affecting 145 British universities and, like many of the thousands of students graduating this summer, I am set to leave without a formal classification.
UK anti-boycott bill is attack on freedom of expression, say civil society groups
Plans to stop UK public bodies boycotting foreign countries and British companies that trade with them represent a further attack on the right to freedom of expression, civil society groups have said.Officials from the Department for Levelling Up, Housing and Communities (DLUHC) have said the boycotts, divestment and sanctions bill, announced in last year's Queen's speech and designed to stop actions against Israel, will be tabled soon.
Overtly racist': Lawsuit challenges Canada's migrant farmworker system
Canada's migrant worker programs are facing criticism for violating workers' rights and perpetuating racism and discrimination.
Tied employment, where migrant workers are bound to a specific employer, undermines their ability to organize and demand better wages and conditions. [ more ]
'Yellowface' takes white privilege to a sinister level
Every once in a while there is a novel that enters the literary zeitgeist and requires discourse but it feels like there is nothing that can be written or said that will ever do it justice.This is the feeling R.F.Kuang's new novel Yellowface evokes.The highly immersive satirical novel takes us on a thrilling journey through the eyes of a writer who struggles to make her own way in the cut-throat world of publishing.
FBI warns California parents of child predators using 'group grooming' tactic online
The FBI is warning people of predators targeting children online using a tactic called "group grooming." San Francisco's FBI field office issued an announcement Thursday, after it reported trends in sexual predators working together to expose children to explicit content and exploit them.
People who use smart drugs' worse at complex tasks, study finds
Smart drugs are not helpful for complex tasks: A recent study has found that people who take 'smart drugs' are worse at performing complex tasks than those who don't.
Smart drugs can lead to negative side effects: The study found that those who took smart drugs experienced a greater amount of side effects than those who didn't, such as headaches, nausea, and anxiety. [ more ]
Calm Sage - Your Guide to Mental and Emotional Well-being
Machiavellian Personality Traits: What Does It Mean To Be Machiavellian?
Which name or person strikes your mind first when I ask you to think about a personality that is charming, assured, flattering, and intellectual?Have you ever noticed the other side of them?Are they self-obsessed, cruel, or manipulative at the same time?If your answer is yes, you might be dealing with a Machiavellian personality.
The Moscow-based cybersecurity company Kaspersky says iOS devices are being targeted by a previously unknown malware.The firm discovered the threat while monitoring the network traffic of its own corporate Wi-Fi.Kaspersky is calling the new campaign Operation Triangulation.The campaign report reveals how the attack works and details the exploitation's technical properties.
Zero-day MOVEit Transfer vulnerability exploited in the wild, heavily targeting North America
1. A zero-day vulnerability, called "MoveIt," has been discovered in the popular file transfer protocol SFTP, which could allow attackers to compromise servers.
2. Organizations are advised to update to the latest version of SFTP as soon as possible to protect against this vulnerability.
3. All organizations should have a risk management plan in place to quickly identify and mitigate zero-day vulnerabilities like MoveIt. [ more ]
Qatar minister elected to head UN labor conference following World Cup scrutiny
The labor minister of Qatar, which faced intense scrutiny over its treatment of migrant workers in the run-up to last year's World Cup soccer tournament, was elected Monday as the president of the United Nations labor agency's annual conference.Asian and Pacific nations proposed Ali bin Samikh al-Marri to lead the International Labor Agency's two-week conference in Geneva.
Germany rejects criticism it watered down language on gas at G7 summit
The German government on Monday rejected criticism that it pushed to weaken existing commitments for phasing out natural gas at a summit of leaders from the Group of Seven major industrialized democracies, saying the concluding statement is in line with international climate efforts.Environmental campaigners slammed the leaders' decision in Japan to back the construction of new infrastructure for liquefied natural gas, a planet-warming fossil fuel.
Learn how to protect your company from cyberattacks for just $46
1. Establish controls and policies related to cloud usage, such as setting up a zero-trust framework and using multi-factor authentication. 2. Monitor and audit cloud activity to ensure that no unauthorized actions are taking place. 3. Establish a cross-functional team to help maintain cloud
3 new books in translation blend liberation with darkness
Meghan Collins Sullivan/NPR Many novels end in liberation of one sort or another.It is a reliable way to offer catharsis, to give readers the feeling of escape while writing a book that is not escapist as such.Blending liberation with darkness is, then, nothing new but three new novels in translation take the mix as far as it can go.
Zero Day Initiative - Exploiting the Sonos One Speaker Three Different Ways: A Pwn2Own Toronto Highlight
1. The ZDI identified three different attack methods for exploiting the Sonos One speaker, including a cross-site scripting vulnerability, an authentication bypass vulnerability, and a command injection vulnerability. 2. The vulnerabilities were exploited during the Pwn2Own Toronto hacking competition, showcasing the serious security risks posed by
Manchester City enjoy coronation but they cannot control their legacy | Jonathan Liew
The fans were warned not to invade the pitch.There was a message on the big screen a few minutes before the end, a reminder on the public address system that entering the playing surface was strictly illegal and would not be tolerated.There was a line of stewards and police officers poised like sprinters by the touchline, ready to secure the turf as soon as the game ended.
Scorsese debuts 'Killers of the Flower Moon' in Cannes to thunderous applause
Martin Scorsese unveiled Killers of the Flower Moon at Cannes on Saturday, debuting a sweeping American epic about greed and exploitation on the bloody plains of an Osage Nation reservation in 1920s Oklahoma.Scorsese's latest starring Leonardo DiCaprio, Lily Gladstone and Robert De Niro is one of his most ambitious.
Apple Releases iOS 16.5 With Security And Bug Fixes: Won't Be The Last iPhone Update Before iOS 17
Apple released the iOS 16.5 update for its iPhone devices this week.The update is a significant one but it does not contain new and pathbreaking features and functions.The iOS 16.5 update contains two minor new additions to preexisting features.However, there are some important bug fixes, and Apple has addressed multiple security vulnerabilities.
Apple Patches 3 Exploited WebKit Zero-Day Vulnerabilities
Apple on Thursday released security updates for its operating systems to patch dozens of vulnerabilities that could expose iPhones and Macs to hacker attacks, including three zero-days affecting the WebKit browser engine.Two of the actively exploited vulnerabilities, CVE-2023-28204 and CVE-2023-32373, have been reported to the tech giant by an anonymous researcher.
Gale Wilhelm: Intimate Sadness and Joyous Love - San Francisco Bay Times
By Dr. Bill Lipsky- In her groundbreaking A Complete, Cumulative Checklist of Lesbian, Variant and Homosexual Fiction (1960), the author Marion Zimmer Bradley wrote that We Too Are Drifting was "probably the major novel of the thirties to deal with lesbians" and "perhaps the best of all time."
Access to Energy Sector ICS/OT Systems Offered on Hacker Forums
Threat actors have been offering access to energy sector organizations, including industrial control systems (ICS) and other operational technology (OT) systems, according to a new report from Searchlight Cyber.The UK-based threat intelligence company has conducted an analysis of posts published between February 2022 and February 2023 on cybercrime forums, dark web sites, and marketplaces, and found many offers for initial access into the environments of energy sector organizations, including oil and gas and renewable energy firms in the US, Canada, UK, Italy, France and Indonesia.
Of all the ways to win a culture war, the smoothest is to just make the other side seem hopelessly uncool.So it's been with the march of marijuana legalization: There have been moral arguments about the excesses of the drug war and medical arguments about the potential benefits of pot, but the vibe of the whole debate has pitted the chill against the uptight, the cool against the square, the relaxed future against the Principal Skinners of the past.
WordPress Field Builder Plugin Vulnerability Exploited in Attacks Two Days After Patch
Threat actors were seen adopting public proof-of-concept (PoC) exploit code targeting a cross-site scripting (XSS) vulnerability in the Advanced Custom Fields WordPress plugin only two days after a patch was released, Akamai reports.Tracked as CVE-2023-30777, the high-severity vulnerability could allow attackers to inject malicious scripts and other payloads into vulnerable websites.
Climate Change Brings Warmer, Wetter Weather to Trinidad
Imtiaz Khan remembers the rains of his childhood as being light and providing welcome relief from the summer heat.A heavy shower, he said, would arrive only about once a month during the rainy season.Now 48, and president of the Carli Bay Fishing Association, Mr. Khan said the rains were something to dread.
Mysterious Killing of Chinese Gold Miners Puts New Pressure on Beijing
The Chinese embassy in the Central African Republic had a stark warning for its compatriots in the landlocked nation: Do not leave the capital city of Bangui.Kidnappings of foreigners were on the rise, and any Chinese person outside of Bangui was to leave those areas immediately.Less than a week later, on March 19, a group of gunmen stormed a remote gold mine far away from Bangui and killed nine Chinese workers.
Whose Queen? Netflix and Egypt Spar Over an African Cleopatra.
On this much, at least, everyone can agree: Cleopatra was a formidable queen of ancient Egypt, the last of the Macedonian Greek dynasty founded by Alexander the Great, who went on to even greater posthumous fame as a seductress, immortalized by Shakespeare and Hollywood.Beyond that, many of the details are fuzzy which is how one of the world's dominant streaming services ended up in an imbroglio with modern-day Egypt recently, called out by online commenters and even the Egyptian government for casting a Black actress to play Cleopatra in the Netflix docudrama series African Queens, which airs on Wednesday.
Details Disclosed for Exploit Chain That Allows Hacking of Netgear Routers
Industrial and IoT cybersecurity firm Claroty on Thursday disclosed the details of five vulnerabilities that can be chained in an exploit potentially allowing threat actors to hack certain Netgear routers.The vulnerabilities were first presented at the 2022 Pwn2Own Toronto hacking competition, where white hat hackers earned a total of nearly $1 million for exploits targeting smartphones, printers, NAS devices, smart speakers and routers.
On a significantly lighter Patch Tuesday than of late, a publicly disclosed and actively exploited zero-day vulnerability in the Windows Secure Boot security feature looks set to cause an ongoing headache for administrators and security teams.Tracked as CVE-2023-24932 - and one of two exploited zero-days in Microsoft's May Patch Tuesday drop - successful exploitation of this security feature bypass vulnerability, credited to ESET's Martin Smolár and SentinelOne's Tomer Sne-or, is considered particularly dangerous.
AndoryuBot DDoS Botnet Exploiting Ruckus AP Vulnerability
Owners of Ruckus access points (APs) have been warned that a DDoS botnet named AndoryuBot has been exploiting a recently patched vulnerability to hack devices.The vulnerability in question is tracked as CVE-2023-25717 and it was patched by Ruckus in February in many of its wireless APs.The vulnerability allows a remote, unauthenticated attacker to execute arbitrary code and take complete control of a targeted Ruckus device.
Dump these Cisco phone adapters because it's not fixing them
There is a critical security flaw in a Cisco phone adapter, and the business technology giant says the only step to take is dumping the hardware and migrating to new kit.In an advisory, Cisco this week warned about the vulnerability in the SPA112 2-Port Adapter that, if exploited, could allow a remote attacker to essentially take control of a compromised device by seizing full privileges and executing arbitrary code.
Rage Against the Machine react to Rock Hall induction: "A surprising trajectory"
Rage Against the Machine have responded to this morning's news that they are among the inductees in the Rock & Roll Hall of Fame 's Class of 2023.The groundbreaking band cited "a surprising trajectory" while thanking their "passionate fans" and others for their inspiration over the years.
Chinese APT Uses New 'Stack Rumbling' Technique to Disable Security Software
A subgroup of the Chinese state-sponsored threat actor known as APT41 has been observed using a new denial-of-service (DoS) technique to disable security software, cybersecurity firm Trend Micro reports.Tracked as Earth Longzhi, the APT41 subgroup is known for the targeting of organizations in the Philippines, Taiwan, and Thailand.
Zero Day Initiative - CVE-2023-28231: RCE in the Microsoft Windows DHCPv6 Service
In this excerpt of a Trend Micro Vulnerability Research Service vulnerability report, Guy Lederfein and Lucas Miller of the Trend Micro Research Team detail a recently patched remote code execution vulnerability in the Microsoft Windows DHCPv6 Service.This bug was originally discovered by YanZiShuang@BigCJTeam of cyberkl.
Apple pushes first-ever 'rapid' patch, rapidly screws up
Apple on Monday pushed to some iPhones and Macs its first-ever rapid security fix.This type of patch is supposed to be downloaded and applied automatically and seamlessly by the operating system to immediately protect devices from exploitation, thus avoiding the usual system update cycle that users may put off or miss and thus leave their stuff vulnerable to attack.
Unionized Film and TV Writers Strike in Los Angeles and New York
At issue are pay scales, residual fees and base employment guarantees in the era of online streaming.The Writers Guild of America West building in Los Angeles, California, on May 2, 2023.VALERIE MACON / AFP via Getty Images Unionized film and television writers are on strike Tuesday after a midnight deadline came without a deal with executives of the major producers and streaming giants in Hollywood.