GhostToken GCP flaw let attackers backdoor Google accounts

Google has addressed a Cloud Platform (GCP) security vulnerability impacting all users and allowing attackers to backdoor their accounts using malicious OAuth applications installed from the Google Marketplace or third-party providers. — Read on http://www.bleepingcomputer.com/news/security/ghosttoken-gcp-flaw-let-attackers-backdoor-google-accounts/

Three Unreleased Mac Models Appear in Apple’s Find My Configuration File

Three new Mac model identifiers were recently added to a Find My configuration file on Apple's backend, as discovered by Nicolás Álvarez (via... — Read on http://www.macrumors.com/2023/04/21/new-mac-models-find-my-configuration-file/

Polestar 4 Has No Rear Window to Make It Safer, Says Polestar

The new Polestar 4 has no rear window to increase headroom for passengers, among other reasons; it uses a rear-mounted camera instead. — Read on jalopnik.com/polestar-4-has-no-rear-window-to-make-it-safer-says-po-1850347758

Global Spyware Attacks Spotted Against Both New & Old iPhones

Campaigns that wielded NSO Group's Pegasus against high-risk users over a six-month period demonstrate the growing sophistication and relentless nature of spyware actors. — Read on http://www.darkreading.com/mobile/global-spyware-attacks-spotted-new-old-iphones-global-attacks

%d