Elon Musk Is Throwing It All Away
Elon Musk's behavior is finally catching up to Tesla. Tesla closed at $222.15, down about 55% compared to its all-time high of $479.86 on December 17.
"You are not welcome here": Trump promises "many" more arrests of pro-Palestine protesters
Judge orders Trump administration not to deport Palestinian activist
US added to international watchlist for rapid decline in civic freedoms
The group cited several of the administration’s actions such as the mass termination of federal employees, the appointment of Trump loyalists in key government positions, the withdrawal from international efforts such as the World Health Organization and the UN Human Rights Council, the freezing of federal and foreign aid and the attempted dismantling of USAid. This puts the US alongside Democratic Republic of Congo, Italy, Pakistan and Serbia.
Is Trump preparing to invoke the Insurrection Act? Signs are pointing that way
One of Trump’s executive orders tasks the secretaries of the Department of Defense and Department of Homeland Security to submit a joint report, within 90 days, recommending “whether to invoke the Insurrection Act.”
Trump could invoke the Insurrection Act and declare martial law by merely asserting that “unlawful obstruction” has made it “impracticable to enforce the laws of the United States” (as President Dwight D. Eisenhower did when he ordered the Arkansas National Guard to enforce the desegregation of Little Rock, Ark., schools).
Developer sabotaged ex-employer with kill switch activated when he was let go
Coder faces ten-year prison sentence for sabotaging his employer's systems.
Undocumented commands found in Bluetooth chip used by a billion devices
The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains undocumented commands that could be leveraged for attacks.
The undocumented commands allow spoofing of trusted devices, unauthorized data access, pivoting to other devices on the network, and potentially establishing long-term persistence.
The risks arising from these commands include malicious implementations on the OEM level and supply chain attacks.
Depending on how Bluetooth stacks handle HCI commands on the device, remote exploitation of the commands might be possible via malicious firmware or rogue Bluetooth connections.
Espressif said the undocumented commands are debug commands used for internal testing, and that they will remove the debug commands in a future software update.
Ripple co-founder Larsen’s $150M XRP theft linked to LastPass breach
The LastPass hack had been linked to at least $45 million in crypto thefts as of December 2024.
How the Biggest Crypto Heist in History Went Down
The cryptocurrency exchange Bybit lost $1.5 billion to North Korean hackers last month — and it all traced back to an account on Safe--a free digital storage service. To authorize the routine transfer that led to the hack, Mr. Zhou said, he used a hardware tool designed by Ledger, the crypto security firm. The device was not in sync with Safe, he said. So he could not use the tool to check the full details of the transaction he was approving.
By some estimates, Bybit is the world’s second-largest crypto exchange, processing tens of billions of dollars every day. Based in Dubai, it does not offer services to customers in the United States.
This was a supply-chain attack: hackers compromised a computer belonging to a Safe developer, and planted malicious code to manipulate transactions.
Safe.eth: Investigation Updates and Community Call to Action
A developer's MacOS laptop was infected with malware, and the attackers hijacked an AWS session token.
India wants backdoors into clouds, email, SaaS, for tax inspectors
A proposed bill gives tax authorities access to email servers, social media accounts, online investment accounts, and much more.
Google begs owners of crippled Chromecasts not to hit factory reset
Expired SSL cert kerfuffle leaves second-gen, Audio gadgets useless. The web giant is aware of the breakdown and says a fix is in the works.
We call this kernel saunters: How Apple rearranged its XNU core with exclaves
Apple has been working to harden the XNU kernel that powers its various operating systems, including iOS and macOS, with a feature called "exclaves." Exclaves are believed to implement "domains isolated from the kernel that protect key functions in macOS even when the kernel becomes compromised. This in turn suggests that Apple is in the process of refactoring the kernel into a central microkernel with protected exclaves."
DOJ: Google must sell Chrome, Android could be next
The Trump administration backed off Biden's plan to force Google to sell off its AI, but left the most serious penalty intact--selling Chrome. The government proposes that Google should be prohibited from making any of its search or generative AI products mandatory on Android.