A high-severity vulnerability in 7-Zip has been discovered, allowing attackers to bypass Windows' Mark-of-the-Web (MotW) security feature and execute malicious code during file extraction. 7-Zip lacks an auto-update function, requiring users to manually update the software.
Nvidia has released a critical GPU driver update to address eight security flaws that could allow attackers with local access to execute malicious code. The vulnerabilities affect consumer GeForce GPUs as well as Nvidia RTX, Quadro, NVS, and Tesla products. The latest driver updates resolve all of these issues, any updates version 553.62 or newer, or 539.19 and above are good to go, depending on the driver branch you are using.
"There's some company out there acting like a global honey badger, doing whatever it pleases with every piece of data that comes its way"
A hot potato: Thousands of popular mobile apps across Android and iOS are allegedly being exploited to harvest sensitive location data on an unprecedented scale. This data collection, occurring through the advertising ecosystem, is likely happening without the knowledge of users or even app developers themselves.
Rumors resurface following Apple's $95 million lawsuit settlement
In context: It's a phenomenon that has been around since the dawn of the modern tech age: seeing an advertisement for an item, usually on social media, that you'd recently been talking about. It's often blamed on companies recording conversations and sending them to advertisers. Now, Apple has refuted rumors that this is something it does using Siri.