Tech

Namco Bandai promises Elden Ring is secure following Dark Souls exploit

Enlarge / In Elden Ring , you get a horse. (credit: Bandai Namco) Last month, publisher Namco Bandai took down its online player-versus-player servers for all PC Dark Souls games after players found a serious vulnerability that allowed for remote execution of malicious code|code calculatordecoder} on an opponent’s computer. While a Reddit user who publicly […]

Games Tech

Dark Souls servers taken down following discovery of critical vulnerability

Enlarge (credit: The_Grim_Sleeper) Bandai Namco, publisher of the Dark Souls role-playing game series, has taken down its player-versus-player servers while it investigates reports of a serious vulnerability that allows players to execute malicious code on the PCs of fellow players. Word of the critical remote-code-execution flaw emerged over the weekend in Reddit threads here and […]

Tech

PoC exploit released for Azure AD brute-force bug—here’s what to do

Enlarge (credit: Michael Dziedzic) A public proof-of-concept (PoC) exploit has been released for the Microsoft Azure Active Directory credentials brute-forcing flaw discovered by Secureworks and first reported by Ars. The exploit enables anyone to perform both username enumeration and password brute-forcing on vulnerable Azure servers. Although Microsoft had initially called the Autologon mechanism a “design” […]

Tech

Security researchers at Wiz discover another major Azure vulnerability

Enlarge / This isn’t how the OMIGOD vulnerability works, of course—but lightning is much more photogenic than maliciously crafted XML. (credit: Aurich Lawson | Getty Images) Cloud security vendor Wiz—which recently made news by discovering a massive vulnerability in Microsoft Azure’s CosmosDB-managed database service—has found another hole in Azure. The new vulnerability impacts Linux virtual machines […]

Tech

Titanfall 2 video game allegedly hacked via “simple exploit”

Enlarge / Knifin’ around. Cutcutcutcutcutcutcutcut. Popular first-person shooter video game Titanfall 2 has been rumored to have a severe security vulnerability that has been exploited. The reports of the game having been hacked started circulating on Twitter after Titanfall 2 community members, including Leon Benkovic, were seen urging players to uninstall the game: Several members of the […]

Tech

“Worst cloud vulnerability you can imagine” discovered in Microsoft Azure

Enlarge / Cosmos DB is a managed database service offering—including both relational and noSQL data structures—belonging to Microsoft’s Azure cloud infrastructure. (credit: Microsoft ) Cloud security vendor Wiz announced yesterday that it found a vulnerability in Microsoft Azure’s managed database service, Cosmos DB, that granted read/write access for every database on the service to any […]

Tech

Need to get root on a Windows box? Plug in a Razer gaming mouse

Enlarge / This is definitely not a Razer mouse—but you get the idea. (credit: calvio via Getty Images ) This weekend, security researcher jonhat disclosed a long-standing security bug in the Synapse software associated with Razer gaming mice. During software installation, the wizard produces a clickable link to the location where the software will be […]

Tech

Google fixes two Chrome zerodays Which Were under active Harness

Expand (charge: Getty Images) Google has two zeroday vulnerabilities on its own Chrome browser, that the next time in just two weeks that the business has mended a Chrome security defect that is under active harness. As demonstrated by a Monday tweet in Ben Hawkes, the mind of Google’s Job Zero vulnerability and exploit research […]