Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: security Clear Filter

Finding thousands of exposed Ollama instances using Shodan

news.ycombinator.com Giannis Tziakouris 2025-10-14 04:18:07

The rapid deployment of large language models (LLMs) has introduced significant security vulnerabilities due to misconfigurations and inadequate access controls. This paper presents a systematic approach to identifying publicly exposed LLM servers, focusing on instances running the Ollama framework. Utilizing Shodan, a search engine for internet-connected devices, we developed a Python-based tool to detect unsecured LLM endpoints. Our study uncovered over 1,100 exposed Ollama servers, with appro

Topics: llm model ollama security servers
Read More
Shop Amazon

That Supposed 'Gmail Hack': Google Says It's False, but Watch Out for Phishing Anyway

cnet.com See Full Bio 2025-10-15 01:32:00

Gmail is a hugely popular email service, with over 2.5 billion users. So when rumors start to swirl about Gmail problems, people pay attention. On Monday, Google made an unusual statement, formally denying that it had issued a broad warning about a major Gmail security issue. "Gmail's protections are strong and effective, and claims of a major Gmail security warning are false," the post read. "While it's always the case that phishers are looking for ways to infiltrate inboxes, our protections c

Topics: data gmail google security warning
Read More
Shop Amazon

Google did not warn 2.5B Gmail users to reset passwords

news.ycombinator.com Unknown 2025-10-15 10:29:57

Google has disputed a widely reported story about the company warning all Gmail users to reset their passwords due to a recent data breach that also affected some Workspace accounts. This claim was covered by numerous news outlets, as well as cybersecurity firms, which published stories about the so-called "urgent warning" asking 2.5 billion Gmail users worldwide to enable two-step authentication and reset their passwords. However, as the company explained on a Monday blog post addressing thes

Topics: gmail security story users warning
Read More
Shop Amazon

No, Google did not warn 2.5 billion Gmail users to reset passwords

bleepingcomputer.com Unknown 2025-10-15 17:57:28

Google has disputed a widely reported story about the company warning all Gmail users to reset their passwords due to a recent data breach that also affected some Workspace accounts. This claim was covered by numerous news outlets, as well as cybersecurity firms, which published stories about the so-called "urgent warning" asking 2.5 billion Gmail users worldwide to enable two-step authentication and reset their passwords. However, as the company explained on a Monday blog post addressing thes

Topics: gmail security story users warning
Read More
Shop Amazon

'2.5 billion Gmail users at risk'? Entirely false, says Google

zdnet.com Lance Whitney 2025-10-16 02:55:54

SOPA Images / LightRocket via Getty Images Follow ZDNET: Add us as a preferred source on Google. ZDNET's key takeaways Google did not issue a warning about a major security breach. But hackers have been targeting Salesforce data in the cloud. Always be alert for phishing and vishing attacks. Worried about reports that a major security breach has impacted your Gmail account? Well, apparently, those claims are much ado about nothing. Also: How to encrypt any email - in Outlook, Gmail, and o

Topics: gmail google phishing security users
Read More
Shop Amazon

TransUnion data breach hits millions, but Gmail security reports are false

9to5mac.com Ben Lovejoy 2025-10-16 14:57:12

A TransUnion data breach has exposed sensitive personal information for millions of US consumers, including dates of birth and social security numbers. However, reports of a major Gmail security problem affecting all 2.5 billion users are false, though loosely based on a far more contained incident back in June … TransUnion data breach Credit bureau TransUnion has confirmed reports that it has suffered a significant data breach exposing the personal data of around 4.4 million US consumers. O

Topics: data gmail reports says security
Read More
Shop Amazon

Unfortunately, the ICEBlock app is activism theater

news.ycombinator.com Unknown 2025-10-16 14:19:31

At this summer's HOPE conference, Joshua Aaron spoke about ICEBlock, his iPhone app that allows users to anonymously report ICE sightings within a 5 mile radius, and to get notifications when others report ICE sightings near them. You can see the full talk, and the lively/infuriating Q&A, here, starting at 6:12:10. Thanks to repression from the highest levels of the Trump administration, his app has gone viral and garnered over a million downloads from the App Store. Karoline Leavitt called it

Topics: app iceblock joshua people security
Read More
Shop Amazon

Google debunks claims of major Gmail security alert

androidauthority.com Unknown 2025-10-17 10:36:13

Edgar Cervantes / Android Authority TL;DR Google says reports of a mass Gmail security warning are false. Some outlets reporting on phishing data last week framed it as a mass Gmail security alert. The company insists Gmail protections remain strong, but advises using passkeys and learning to spot phishing emails. Online threats are scary enough without false or overhyped alarms adding to the confusion. Last week, several outlets claimed that Gmail had issued a major warning to all 2.5 billi

Topics: gmail google outlets phishing security
Read More
Shop Amazon

Google Investors Surprisingly Chill About Major Data Breach

gizmodo.com Riley Gutiérrez Mcdermid 2025-10-18 16:05:36

The stock of Google’s parent company ended Friday’s trading session relatively unchanged, as investors digested news of a major data leak and broader market developments. Alphabet Inc. (GOOG)’s shares closed at $213.53, up slightly from the day’s prior end price, despite Google‘s global security alert advising its 2.5 billion Gmail users to update their information following a data breach involving one of its Salesforce databases. The company immediately issued a network-wide alert telling use

Topics: company data google investors security
Read More
Shop Amazon

Apple @ Work: SAP updates Privileges with new tools for managing admin rights on macOS

9to5mac.com Bradley C 2025-10-18 12:00:00

Apple @ Work is exclusively brought to you by Mosyle, the only Apple Unified Platform. Mosyle is the only solution that integrates in a single professional grade platform all the solutions necessary to seamlessly and automatically deploy, manage & protect Apple devices at work. Over 45,000 organizations trust Mosyle to make millions of Apple devices work ready with no effort and at an affordable cost. Request your EXTENDED TRIAL today and understand why Mosyle is everything you need to work with

Topics: apple mosyle privileges security work
Read More
Shop Amazon

AI models need a virtual machine

news.ycombinator.com Shraddha Barke 2025-10-18 12:25:39

AI Models Need a Virtual Machine Applications using AI embed the AI model in a framework that interfaces between the model and the rest of the system, providing needed services such as tool calling, context retrieval, etc. Software for early chatbots took user input, called the LLM, and returned the result to the user; essentially just a read-eval-print loop. But, as the capabilities of LLMs have evolved and extension mechanisms, such as MCP were defined, the complexities of the control softwar

Topics: ai model models security vm
Read More
Shop Amazon

Software commands 40% of cybersecurity budgets as gen AI attacks execute in milliseconds

venturebeat.com Louis Columbus 2025-10-18 15:06:26

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now “With volatility now the norm, security and risk leaders need practical guidance on managing existing spending and new budgetary necessities,” states Forrester’s 2026 Budget Planning Guide, revealing a fundamental shift in how organizations allocate cybersecurity resources. Software now commands 40% of cybersecurity spending, exceeding har

Topics: ai cybersecurity forrester security time
Read More
Shop Amazon

MSNBC: Whistleblower accuses DOGE team of endangering Social Security data

news.ycombinator.com Unknown 2025-10-18 21:13:50

Whistleblower accuses DOGE team of endangering critical Social Security data This article features Government Accountability Project whistleblower client Charles Borges and was originally published here. Within weeks of Donald Trump’s second inaugural, members of Elon Musk’s Department of Government Efficiency team showed up at the Social Security Administration and started demanding access to files. The efforts were not well received: Michelle King, in her capacity as the acting Social Securi

Topics: data doge government security social
Read More
Shop Amazon

SSA Whistleblower’s Resignation Email Mysteriously Disappeared From Inboxes

wired.com Makena Kelly 2025-10-18 22:49:36

On Friday, the Social Security Administration’s chief data officer, Chuck Borges, sent an email to agency staff claiming that he was forcibly removed from his position after filing a whistleblower complaint this week accusing the agency of mishandling sensitive agency data. Minutes after the email went out, it disappeared from employee inboxes, two SSA sources tell WIRED. “I am regretfully and involuntarily leaving my position at the Social Security Administration (SSA),” Borges wrote in the re

Topics: borges complaint data security ssa
Read More
Shop Amazon

WhatsApp patches vulnerability exploited in zero-day attacks

bleepingcomputer.com Unknown 2025-10-19 22:31:23

WhatsApp has patched a security vulnerability in its iOS and macOS messaging clients that was exploited in targeted zero-day attacks. The company says this zero-click flaw (tracked as CVE-2025-55177) affects WhatsApp for iOS prior to version 2.25.21.73, WhatsApp Business for iOS v2.25.21.78, and WhatsApp for Mac v2.25.21.78. "Incomplete authorization of linked device synchronization messages in WhatsApp [..] could have allowed an unrelated user to trigger processing of content from an arbitrar

Topics: device exploited security targeted whatsapp
Read More
Shop Amazon

Microsoft says recent Windows update didn't kill your SSD

bleepingcomputer.com Unknown 2025-10-20 06:21:27

Microsoft has found no link between the August 2025 KB5063878 security update and customer reports of failure and data corruption issues affecting solid-state drives (SSDs) and hard disk drives (HDDs). Redmond first told BleepingComputer last week that it is aware of users reporting SSD failures after installing this month's Windows 11 24H2 security update. In a subsequent service alert seen by BleepingComputer, Redmond said that it was unable to reproduce the issue on up-to-date systems and b

Topics: drives issue security update windows
Read More
Shop Amazon

How I completed my ultimate smart home setup with this tablet hub (and why it works)

zdnet.com Maria Diaz 2025-10-20 14:45:00

Eufy Security E10 Smart Display ZDNET's key takeaways The Eufy Security E10 Smart Display is available for $200. This smart display shows you the history and current status of your security system and works as a control panel with real-time alerts. The E10 Smart Display only works with Eufy Security devices, so it's not compatible with other security cameras or meant to be a smart home hub. $199.99 at Amazon Follow ZDNET: Add us as a preferred source on Google. I've had an Eufy Security syst

Topics: display eufy home security smart
Read More
Shop Amazon

Do you really need smart home display hub? I tried one, and it made a big difference

zdnet.com Maria Diaz 2025-10-20 20:00:17

Eufy Security E10 Smart Display ZDNET's key takeaways The Eufy Security E10 Smart Display is available for $200. This smart display shows you the history and current status of your security system and works as a control panel with real-time alerts. The E10 Smart Display only works with Eufy Security devices, so it's not compatible with other security cameras or meant to be a smart home hub. $199.99 at Amazon Follow ZDNET: Add us as a preferred source on Google. I've had an Eufy Security syst

Topics: display eufy home security smart
Read More
Shop Amazon

Unpacking Passkeys Pwned: Possibly the most specious research in decades

arstechnica.com Unknown 2025-10-22 13:00:10

Don’t believe everything you read—especially when it’s part of a marketing pitch designed to sell security services. The latest example of the runaway hype that can come from such pitches is research published today by SquareX, a startup selling services for securing browsers and other client-side applications. It claims, without basis, to have found a “major passkey vulnerability” that undermines the lofty security promises made by Apple, Google, Microsoft, and thousands of other companies tha

Topics: passkey passkeys research security use
Read More
Shop Amazon

7 rules to follow for the best home security camera footage (and places to avoid setup)

zdnet.com Chris Bayer 2025-10-23 04:00:24

Maria Diaz/ZDNET Follow ZDNET: Add us as a preferred source on Google. If you're a subscriber to the Nextdoor app, you've seen plenty of footage of prowling ne'er-do-wells caught in the eye of a video doorbell or home security camera. Hopefully, you don't have your own first-hand experience with suspicious characters milling around your front porch, or far worse. Also: Unplugging these 7 common household devices helped reduce my electricity bills For good reason, security cameras continue to

Topics: camera cameras don privacy security
Read More
Shop Amazon

Mosyle identifies new Mac malware that evades detection through fake PDF conversion tool

9to5mac.com Arin Waichulis 2025-10-24 18:31:55

Mosyle, a leader in Apple device management and security, has exclusively revealed to 9to5Mac details on a new Mac malware strain, dubbed “JSCoreRunner”. The zero-day threat evaded all detections on VirusTotal at the time of discovery, spreading through a malicious PDF conversion site called fileripple[.]com to trick users into downloading what appears to be a harmless utility. Free tools that promise quick file conversions for HEIC and WebP files, PDFs, and Word docs have become prolific onlin

Topics: jscorerunner malware new security stage
Read More
Shop Amazon

Why zero trust is never 'done' and is an ever-evolving process

bleepingcomputer.com Unknown 2025-10-24 22:15:25

Picture this scenario: Six months after celebrating their "zero trust transformation," a financial services firm gets hit with a devastating breach. Attackers waltzed through a supply chain vulnerability in a third-party API, bypassing all those carefully configured identity controls . The firm ticked every checkbox and met every requirement - yet here they are, scrambling to contain customer data exposure. But wasn’t zero trust supposed to protect them? The truth is zero trust isn’t a project

Topics: controls policy security trust zero
Read More
Shop Amazon

Whistleblower says DOGE officials copied Social Security numbers

news.ycombinator.com Geoff Brumfiel 2025-10-25 14:50:24

Whistleblower says Trump officials copied millions of Social Security numbers toggle caption Wesley Lapointe/The Washington Post/Getty Images A whistleblower says that a former senior DOGE official now at the Social Security Administration copied the Social Security numbers, names and birthdays of over 300 million Americans to a private section of the agency's cloud. That private cloud environment is accessible by other former DOGE employees at the SSA and is lacking adequate security, the whi

Topics: data doge security social ssa
Read More
Shop Amazon

DOGE accused of copying entire Social Security database to insecure cloud system

arstechnica.com Unknown 2025-10-25 21:04:23

A Social Security Administration (SSA) official alleged in a whistleblower disclosure that DOGE officials created "a live copy of the country's Social Security information in a cloud environment that circumvents oversight." Chuck Borges, the SSA's Chief Data Officer (CDO), "has become aware through reports to him of serious data security lapses, evidently orchestrated by DOGE officials, currently employed as SSA employees, that risk the security of over 300 million Americans' Social Security da

Topics: data said security social ssa
Read More
Shop Amazon

Arlo Announces a New Lineup of AI-Powered Security Cameras

cnet.com See Full Bio 2025-10-26 01:25:06

Arlo's next generation of security cameras is officially here, and they're all in on AI. New versions of the Arlo Essential, Pro and Ultra cameras integrate with Arlo Intelligence features. The Arlo Essential cameras are some of the company's lowest-priced offerings, because they're basic security cameras without any bells and whistles. Arlo provides different options for 2K resolution or HD recording and plug-in or battery-operated variants. Read more: Best Home Security Cameras of 2025: My P

Topics: arlo camera cameras essential security
Read More
Shop Amazon

Whistleblower claims DOGE uploaded Social Security data to unsecure cloud server

engadget.com Unknown 2025-10-26 09:42:51

(Wesley Lapointe for The Washington Post via Getty Images) The Social Security Administration’s (SSA) chief data officer, Charles Borges, has filed a whistleblower complaint alleging that members of the Department of Government Efficiency (DOGE) uploaded a copy of a key Social Security database to an unsecured cloud environment in June, the New York Times reported. This may have exposed the personal information of hundreds of millions of Americans. The complaint alleges that under the authority

Topics: data doge information security social
Read More
Shop Amazon

DOGE uploaded live copy of Social Security database to ‘vulnerable’ cloud server, says whistleblower

techcrunch.com Zack Whittaker 2025-10-26 13:30:30

A top Social Security Administration official turned whistleblower says members of the Trump administration’s Department of Government Efficiency (DOGE) uploaded hundreds of millions of Social Security records to a vulnerable cloud server, putting the personal information of most Americans at risk of compromise. Charles Borges, the Social Security Administration’s chief data officer, said in a newly released whistleblower complaint published Tuesday that other top agency officials signed off on

Topics: agency data information security social
Read More
Shop Amazon

Beyond GDPR security training: Turning regulation into opportunity

bleepingcomputer.com Unknown 2025-10-27 01:00:10

By Eirik Salmi, System Analyst at Passwork Even though 88% of businesses spend over €1 million on GDPR compliance and 40% invest up to €10 million, 80% of their employees still ignore basic password security practices. The formal risk is obvious: GDPR fines can reach up to €20 million or 4% of global annual turnover. The informal one is quieter but often far more damaging: lost trust, declining customer loyalty, and disrupted operations. In 2024, European regulators issued fines exceeding €1.2

Topics: gdpr password real security training
Read More
Shop Amazon

Finally, my ultimate smart home setup is complete thanks to this display gadget

zdnet.com Maria Diaz 2025-10-27 01:00:23

Eufy Security E10 Smart Display ZDNET's key takeaways The Eufy Security E10 Smart Display is available for $200. This smart display shows you the history and current status of your security system and works as a control panel with real-time alerts. The E10 Smart Display only works with Eufy Security devices, so it's not compatible with other security cameras or meant to be a smart home hub. $199.99 at Amazon Follow ZDNET: Add us as a preferred source on Google. I've had an Eufy Security syst

Topics: display eufy home security smart
Read More
Shop Amazon

Trump admin issues stop-work order for offshore wind project

arstechnica.com Unknown 2025-10-27 05:53:41

The Trump administration on Friday issued an order to stop work on a nearly complete offshore wind energy project, the latest step in the Trump administration’s crackdown on wind power. In a letter to Orsted, the Danish company developing Revolution Wind, the Bureau of Ocean Energy Management said its order is tied to concerns about “the protection of national security interests of the United States and prevention of interference with reasonable uses of the exclusive economic zone, the high sea

Topics: concerns national orsted security wind
Read More
Shop Amazon
Trending Topics
Hot Now
ai 3599 apple 2991 new 2371 google 1997 content 1716
Popular
like 1483 company 1410 pro 1308 iphone 1139 app 1119 zdnet 1098 said 1049 data 1042 does 900 reviews 886
Emerging
editorial 865 amazon 855 game 803 samsung 769 phone 759 pixel 755 android 738 just 715 available 680 users 679
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]