AI news from Ars Technica

Serving the Technologist since 1998. News, reviews, and analysis.
Biz & IT - Ars Technica

  1. PeopleSoft 0-day affecting hundreds of organizations steals gigabytes of data

    Vulnerability in the Oracle-owned PeopleSoft software is about as critical as they come.

  2. Locked in heated rivalry with researcher, Microsoft fixes 0-day they disclosed

    A separate zero-day also disclosed by Nightmare Eclipse appears to be patched as well.

  3. High-severity vulnerability in Linux caused by a single faulty character

    Use-after-free bug can be exploited to evade sandbox defenses.

  4. For the 2nd time in weeks, Microsoft packages laced with credential stealer

    73 packages run self-replicating stealer as soon as they're opened by an AI agent.

  5. How a USB-connected speaker can infect a PC without ever being touched

    Seller of the Sound Blaster Katana V2X doesn't consider the behavior a vulnerability.

  6. Dashlane explains how attackers managed to download encrypted password vaults

    By targeting large numbers of users, attackers increased their chances of success.

  7. Can't make sense of Dashlane's vault theft notification? You're not alone.

    Security advisory leaves out key details. Dashlane maintains complete silence.

  8. Dozens of Red Hat packages backdoored through its official NPM channel

    Anyone who has downloaded affected Red Hat packages should investigate immediately.

  9. Botnet of more than 17 million devices dismantled

    The botnet was reportedly tied to a Russia-based residential proxy network.

  10. Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code

    Undisclosed addition in jqwik instructed AI coding agents to delete app output.

Find a Wide Selection of Products and Deals - Shop Now on Amazon