Twitter's source code has partially leaked due to unknown reasons. GitHub later took down the repository containing the code. More: - The source code was leaked by an account named "FreeSpeechEnthusiast."
- GitHub closed the account after Twitter filed a petition in the District Court of Northern California asking GitHub to do so.
- In order to track the person who leaked the proprietary information, Tesla asked GitHub to share the following information:
- name,
- address
- telephone number
- email address
- social media profile data,
- and IP address.
- At this stage, it is unknown whether any threat actors accessed the GitHub repository containing the source code before the company took it down.
| |
White hat hackers have breached Tesla cars twice in the Pwn2Own hackathon. The researchers were awarded $350,000 and a Model 3 for the feat. More: - According to reports, a Tesla security response team was present at the event and is expected to report and patch the security flaws.
- The security researchers breached Tesla's security system on two separate occasions.
- In the first breach, they identified a time-of-check to time-of-use flaw, while the second time, they took advantage of a heap overflow and an out-of-band write vulnerability.
- The team was paid $100,000 for the first breach and $250,000 for the second one.
- These white hat hackers are part of the French company Synacktiv.
| |
A message from DOIT Level up your Google Cloud skills with the Google Cloud Cookbook. Ideal for system engineers and administrators, developers, network and database administrators, this book will enable you to: - Gain hands-on experience using practice examples and labs
- Explore topics that include BigQuery, Cloud Run, and Kubernetes
- Build and run mobile and web applications on Google Cloud
- Build a minimum viable product (MVP) app to use in production
Download your complimentary copy of the cookbook today. Get Your Copy | |
Open AI has stated that the Redis bug caused a recent ChatGPT data leak. The leak may have affected over 1% of the ChatGPT Plus user base. More: - On March 20, 2023, several ChatGPT users claimed they were seeing other users' conversation histories.
- After finding out about the bug, OpenAI took ChatGPT offline to investigate the case and patch the bug.
- After concluding the investigation, the company stated that it may have caused the unintentional visibility of payment-related information of 1.2% of the active ChatGPT Plus subscribers during a specific nine-hour period.
- According to researchers, the bug was present in the Redis client open-source library, redis-py.
- ChatGPT uses Redis to cache user information in its servers.
- According to the company, the bug has been patched.
| |
The founder of the infamous hacking forum BreachForums could face five years in prison. The 20-year-old was arrested on March 15, 2023. More: - BreachForums is a hacker forum that was created in March 2022. The forum was created shortly after RaidForums, another similar forum, was shut down by law authorities.
- BreachForums enabled hackers to trade stolen data such as:
- bank account information,
- Social Security numbers,
- tools,
- databases containing personally identifying information, etc.
- As more information has been published, it has now been understood that undercover FBI agents purchased five sets of data as a way of communicating with the forum's founder.
- The founder, named Conor Brian Fitzpatrick, used the same VPNs and IP addresses to log into the email account conorfitzpatrick2002 [at] gmail.com, the Conor Fitzpatrick Purse.io account, the pompompurin account on RaidForums, and the pompompurin account on BreachForums, among other accounts, according to the FBI.
- Due to his not using a VPN on the TOR browser, law authorities were able to confirm his identity and arrest him.
| |
A message from BRILLIANT Learning a little every day is one of the best habits you can develop. Fortunately, Brilliant was built for modern learners who want to build skills they can put to work quickly. More: - Brilliant is the easiest, most effective way to level up on core concepts, getting you hands-on in everything from foundational math to cutting-edge topics like AI, neural networks, and data science.
- Bite-size, interactive lessons make it easy (but not too easy) to master complex concepts in minutes a day.
- Built for busy people, Brilliant lets you learn by doing—so concepts really click.
- They have thousands of quick, visual, hands-on lessons you can dip into anytime, anywhere.
Zoom out: - Interactive learning has been proven to be 6x more effective than watching lecture videos.
- You can ramp up on advanced topics in as little as 15 minutes a day.
- Try it free for 30 days + get 20% off an annual premium subscription.
Get Started | |
British security agencies have stated that they've recently opened fake DDoS-for-hire sites to infiltrate hacker groups. The agencies have collected data on thousands of cases. More: - The websites were set up in a way that led visitors to believe they were gaining access to DDoS tools.
- Users were required to register with the sites, providing the NCA with valuable details about each individual.
- The agency has stated that it will contact every visitor, warn them of the risk of engaging in criminal activity, and pass on the details of any users outside the U.K. to international partners.
- The U.K.'s National Crime Agency stated that the campaign aims to disrupt the trust threat actors have in DDoS-for-hire websites and to discourage unadvanced threat actors from acquiring these tools for future purposes.
| |
Quick Hits: - Sign up for Lemonade and have your claim paid faster than it took you to read this ad. No joke.*
- Microsoft has published a patch for aCropalypse, a bug that enabled hackers to recover edited portions of screenshots.
- The Puerto Rico Aqueduct and Sewer Authority has been reportedly hit by a ransomware attack. Vice Society, a group that has previously hacked many parts of the country's digital infrastructure, has claimed responsibility for the breach.
- A macOS malware that can steal documents, cookies, and login information has been tracked by researchers.
- Three new variants of the banking Trojan known as IcedID have been tracked. The new variants no longer have a banking functionality, signaling that the threat actors operating it may want to breach new targets.
- Wander launches the first Vacation Rental REIT. Enjoy targeted 8% annual dividend and 14% total return by owning a part of this incredible portfolio.*
*This is sponsored content. | |
Upcoming events at Inside: - March 27 - Inside Interview with Zscaler - Zero Trust Defense Strategies to Take Your Security to the Next Level (Watch On Demand)
- March 28 - Inside Startups Coffee Break (Register Here)
- March 30 - A panel on how CTOs balance and prioritize NFRs into their roadmaps (Register Here) *
- March 30 - Paid Media Framework: A Proven System for Successful Ad Campaigns w/ Devin Littlefield (Market Vantage) (Register Here)
- April 13 - Inside Interview with Lacework - The Evolution of Cloud Security w/ Ulfar Erlingsson (Watch On Demand)
- April 18 - Human Resources Summit'23 (Register Here)
*This is a sponsored listing. | |
| | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. | | Editor | Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords. | |
|
|