Paul W Jones
LightNews LightNews
Paul W Jones
@pwjone1.bsky.social
5 followers 24 following 51 posts
Posts Replies Media Videos
arstechnica.com/security/202...

Sigh, Asus makes some good routers, but...
How to know if your Asus router is one of thousands hacked by China-state hackers
So far, the hackers are laying low, likely for later use.
arstechnica.com
November 22, 2025 at 10:36 AM
arstechnica.com/gadgets/2025...
Commercial spyware “Landfall” ran rampant on Samsung phones for almost a year
Targeted attack could steal all of a phone’s data and activate camera or mic.
arstechnica.com
November 8, 2025 at 4:32 PM
www.tomshardware.com/tech-industr...
Motion sensors in high-performance mice can be used as a microphone to spy on users, thanks to AI — Mic-E-Mouse technique harnesses mouse sensors, converts acoustic vibrations into speech
This mouse has ears.
www.tomshardware.com
October 5, 2025 at 10:23 AM
www.engadget.com/cybersecurit...
Congress let a key cybersecurity law expire this week, leaving US networks more vulnerable
With the government shut down, it's unclear when CISA 2015 will be renewed.
www.engadget.com
October 5, 2025 at 10:16 AM
www.reuters.com/markets/euro...
TransUnion says 4.4 million consumers' data compromised in hack
Credit bureau TransUnion said Thursday that more than 4 million people's data was exposed in a recent hack involving an unidentified third party.
www.reuters.com
August 29, 2025 at 10:45 AM
arstechnica.com/security/202...
Record DDoS pummels site with once-unimaginable 7.3Tbps of junk traffic
Attacker rained down the equivalent of 9,300 full-length HD movies in just 45 seconds.
arstechnica.com
June 21, 2025 at 9:31 AM
www.techspot.com/news/108109-...
Thousands of Asus routers compromised by "ViciousTrap" backdoor
Analysts at GreyNoise have uncovered a mysterious backdoor-based campaign affecting more than 9,000 Asus routers. The unknown cybercriminals are exploiting security vulnerabilities – some of which hav...
www.techspot.com
May 31, 2025 at 12:19 PM
Old sold as New, some potential checking needed if you have bought a Seagate drive:

www.techspot.com/news/106706-...
Used Seagate drives sold as new traced back to crypto mining farms
The first reports of affected drives surfaced in January, when consumers noticed inconsistencies in supposedly new Seagate Exos disk drives used in data centers. The issue has...
www.techspot.com
February 10, 2025 at 11:42 AM
Not good:

www.engadget.com/general/prot...
Protecting the US from hackers apparently isn't in Trump's budget
The Cybersecurity and Infrastructure Security Agency is reportedly subject to the same government buyout program as other critical departments, potentially weakening US cybersecurity.
www.engadget.com
February 7, 2025 at 10:44 AM
www.techspot.com/news/106411-...
Microsoft finally patches serious UEFI Secure Boot flaw after seven-month delay
The vulnerability (CVE-2024-7344) allowed bad actors to sneak malicious code onto devices in a way that could bypass many of Windows 11's built-in security defenses. It exploited...
www.techspot.com
January 21, 2025 at 11:40 AM
Time to go through your list of Chrome extensions and do some weeding, checking:

arstechnica.com/security/202...
Time to check if you ran any of these 33 malicious Chrome extensions
Two separate campaigns have been stealing credentials and browsing history for months.
arstechnica.com
January 5, 2025 at 11:03 AM
Happy Holidays!

jlcards.com/2ia8Rg
An ecard from Paul Jones
Please click the image to view your ecard!
jlcards.com
December 25, 2024 at 2:48 PM
More bad news on SMS:

gizmodo.com/feds-warn-sm...
Feds Warn SMS Authentication Is Unsafe After ‘Worst Hack in Our Nation’s History’
Even the U.S. government is telling Americans to use encrypted apps.
gizmodo.com
December 20, 2024 at 11:32 AM
More Salt Typhoon problems:

arstechnica.com/tech-policy/...

Apparently China is reading all of our text messages (at least those on Android, including iMessage group chats with Android users) and call records.
Report: AT&T, Verizon aren’t notifying most victims of Chinese call-records hack
Telcos reportedly aren’t telling users about call metadata taken in Chinese hack.
arstechnica.com
December 13, 2024 at 12:35 PM
Booking.com not doing well at the security thing:

arstechnica.com/tech-policy/...
Booking.com: The largest selection of hotels, homes, and holiday rentals
Whether you’re looking for hotels, homes, or holiday rentals, you’ll always find the guaranteed lowest price. Browse our 2,563,380 accommodations in over 85,000 destinations.
Booking.com
December 7, 2024 at 9:32 AM
arstechnica.com/ai/2024/12/y...
Your AI clone could target your family, but there’s a simple defense
The FBI now recommends choosing a secret password to thwart AI voice clones from tricking people.
arstechnica.com
December 7, 2024 at 9:28 AM
QNAP mucks a NAS update:
arstechnica.com/gadgets/2024...
QNAP firmware update leaves NAS owners locked out of their boxes
Downgrading or customer support are your options if you caught the bad one.
arstechnica.com
November 27, 2024 at 3:48 PM
If you have a TP-Link router, might be time to retire it in favor of another company:
arstechnica.com/information-...
Thousands of hacked TP-Link routers used in years-long account takeover attacks
The botnet is being skillfully used to launch “highly evasive” password-spraying attacks.
arstechnica.com
November 3, 2024 at 11:15 AM
arstechnica.com/security/202...
Thousands of Linux systems infected by stealthy malware since 2021
The ability to remain installed and undetected makes Perfctl hard to fight.
arstechnica.com
October 4, 2024 at 12:46 PM
www.techspot.com/news/104959-...
Latest Windows 11 preview update is causing widespread system crashes and failures
Microsoft's latest Windows 11 preview, KB5043145, is causing significant problems for users. The update, released last week as a preview for the upcoming October Patch Tuesday, has...
www.techspot.com
October 3, 2024 at 11:36 AM
techcrunch.com/2024/09/19/a...
Apple's new macOS Sequoia update is breaking some cybersecurity tools | TechCrunch
On Monday, Apple released its latest computer operating system update called macOS 15, or Sequoia. And, somehow, the software update has broken the
techcrunch.com
September 20, 2024 at 11:57 AM
Not good for YubiKeys:
arstechnica.com/security/202...
YubiKeys are vulnerable to cloning attacks thanks to newly discovered side channel
Sophisticated attack breaks security assurances of the most popular FIDO key.
arstechnica.com
September 4, 2024 at 11:08 AM
thehackernews.com/2024/08/russ...
Russian Hackers Exploit Safari and Chrome Flaws in High-Profile Cyberattack
Russian hackers exploit patched Safari and Chrome flaws in attacks on Mongolian government websites, targeting mobile users.
thehackernews.com
September 2, 2024 at 11:09 AM
Bluesky gains a lot of users due to X ban in Brazil:

www.theverge.com/2024/8/31/24...
Bluesky has gained a million new users in the last three days.
The platform posted about the milestone this afternoon, which it crossed after Brazilian Supreme Court Justice Alexandre de Moraes ordered a ban on Elon Musk’s X yesterday as part of an ongoing feud w...
www.theverge.com
September 1, 2024 at 12:59 PM
1Password patch time, at least on Macs (sigh):
www.theregister.com/2024/08/08/u...
1Password vulnerability lets attackers steal Vault items
Hundreds of thousands of users potentially vulnerable
www.theregister.com
August 10, 2024 at 10:46 AM