Enlarge / In Elden Ring , you get a horse. (credit: Bandai Namco) Last month, publisher Namco Bandai took down its online player-versus-player servers for all PC Dark Souls games after players found a serious vulnerability that allowed for remote execution of malicious code|code calculatordecoder} on an opponent’s computer. While a Reddit user who publicly […]
Enlarge (credit: The_Grim_Sleeper) Bandai Namco, publisher of the Dark Souls role-playing game series, has taken down its player-versus-player servers while it investigates reports of a serious vulnerability that allows players to execute malicious code on the PCs of fellow players. Word of the critical remote-code-execution flaw emerged over the weekend in Reddit threads here and […]
Enlarge (credit: Michael Dziedzic) A public proof-of-concept (PoC) exploit has been released for the Microsoft Azure Active Directory credentials brute-forcing flaw discovered by Secureworks and first reported by Ars. The exploit enables anyone to perform both username enumeration and password brute-forcing on vulnerable Azure servers. Although Microsoft had initially called the Autologon mechanism a “design” […]
Enlarge / This isn’t how the OMIGOD vulnerability works, of course—but lightning is much more photogenic than maliciously crafted XML. (credit: Aurich Lawson | Getty Images) Cloud security vendor Wiz—which recently made news by discovering a massive vulnerability in Microsoft Azure’s CosmosDB-managed database service—has found another hole in Azure. The new vulnerability impacts Linux virtual machines […]
Enlarge / Knifin’ around. Cutcutcutcutcutcutcutcut. Popular first-person shooter video game Titanfall 2 has been rumored to have a severe security vulnerability that has been exploited. The reports of the game having been hacked started circulating on Twitter after Titanfall 2 community members, including Leon Benkovic, were seen urging players to uninstall the game: Several members of the […]
Enlarge / Cosmos DB is a managed database service offering—including both relational and noSQL data structures—belonging to Microsoft’s Azure cloud infrastructure. (credit: Microsoft ) Cloud security vendor Wiz announced yesterday that it found a vulnerability in Microsoft Azure’s managed database service, Cosmos DB, that granted read/write access for every database on the service to any […]
Enlarge / This is definitely not a Razer mouse—but you get the idea. (credit: calvio via Getty Images ) This weekend, security researcher jonhat disclosed a long-standing security bug in the Synapse software associated with Razer gaming mice. During software installation, the wizard produces a clickable link to the location where the software will be […]
Expand (charge: Getty Images) Google has two zeroday vulnerabilities on its own Chrome browser, that the next time in just two weeks that the business has mended a Chrome security defect that is under active harness. As demonstrated by a Monday tweet in Ben Hawkes, the mind of Google’s Job Zero vulnerability and exploit research […]