"I am not a victim of gun violence. Because the one time I needed it, I had a gun!" -- Michael Rivero

Bidgear ad

 

Google has fixed the sixth Chrome zero-day vulnerability this year in an emergency security update released today to counter ongoing exploitation in attacks.

The company acknowledged the existence of an exploit for the security flaw (tracked as CVE-2023-6345) in a new security advisory published today.

"Google is aware that an exploit for CVE-2023-6345 exists in the wild," the company said.

Many voters are questioning the integrity of electronic voting machines after an obscure race for parish sheriff in northwest Louisiana led to a seemingly improbable result. The Democratic candidate, Henry Whitehorn (D), received 21,621 votes and the Republican candidate, John Nickleson (R), got 21,620. John Nickelson, the Republican candidate, announced on social media that he has requested a recount.

Miscreants are actively exploiting two new zero-day vulnerabilities to wrangle routers and video recorders into a hostile botnet used in distributed denial-of-service attacks, researchers from networking firm Akamai said Thursday.

Pennsylvania voters are doubting the integrity of local elections in the swing county of Northampton after issues with touchscreen voting devices arose on the most recent Election Day. The glitches were similar to those seen in the county’s 2019 judges race.

Cisco Talos has recently observed an increase in spam messages abusing a feature of quizzes created within Google Forms. In particular, spammers have discovered that they can create a new quiz in Google Forms, use the victim’s email address to respond to the quiz, and then abuse the “Release Scores” feature of the Google Form to deliver their spam to the victim. Because the spam messages emanate from Google itself, the messages have a good chance of landing in the victim’s inbox.

The ClearFake campaign now targeting Macs is a reminder for Apple users to strengthen their security and be careful with downloads, especially prompts to update your browser when visiting websites.

Even after several months following the discovery and reports on Atomic, the payload is undetected by roughly 50% of AV engines on VirusTotal.

Furthermore, all Safari browser updates will be distributed through macOS's Software Update, or for other browsers, within the browser itself.

Ian Hickson, who worked for Google for 18 of its 25 years, said he resigned from the company this month.

Posting on his blog, Hickson said he was "very lucky" to have experienced the early days of the company, where executives were candid with staff and ambitious experimentation was encouraged — but said the search giant's culture had since "deteriorated."