TECH

Bitdefender reports rising abuse of the legacy MSHTA utility to deliver infostealers and loader malware Campaigns range from simple commodity threats like LummaStealer to advanced persistence tools such as PurpleFox Defenders are urged to restrict outdated scripting utilities and deploy layered security controls to detect malicious script activity Cybercriminals are increasingly using a legitimate legacy…

Looking for a different day? A new NYT Strands puzzle appears at midnight each day for your time zone – which means that some people are always playing ‘today’s game’ while others are playing ‘yesterday’s’. If you’re looking for Wednesday’s puzzle instead then click here: NYT Strands hints and answers for Wednesday, May 20 (game…

The ex-chief of Samsung’s semiconductor business has made a more optimistic prediction about the RAM crisis The memory situation will improve thanks to a surge in RAM production from Chinese companies, and some deflation in the AI bubble Due to those factors combined, we’re told, “There is a possibility that the market will change starting…

Dolby AC-4 was the preferred codec of multiple audio pros Better than existing Atmos audio without high bandwidth requirements Peacock is upgrading but other streamers haven’t announced any plans One of the biggest differences between streamed movies and 4K Blu-ray is the sound quality: even the most expensive streaming tiers deliver compressed audio with a…

Japan recorded surge in deadly bear attacks alongside tens of thousands of nationwide sightings Monster Wolf uses flashing lights and terrifying sounds to scare aggressive wildlife away Demand surged after bears wandered into homes, schools, supermarkets, and tourist resorts nationwide Japan is experiencing a record surge in bear attacks, with 13 human fatalities reported in…

Since I picked up my first pair of Bose QuietComfort Headphones back in 2017, I haven’t looked back. I may have swapped from the classic QuietComfort 35 to the newer QuietComfort model in that time (and replaced the earcups a handful of times), but almost a decade of use from two pairs of excellent headphones…

Microsoft researchers warn Storm‑2949 is abusing the Self‑Service Password Reset flow to hijack accounts Attackers trick victims into approving MFA prompts via phone calls, then reset passwords and exfiltrate sensitive data The campaign targets Microsoft 365 and Azure environments, with Microsoft urging tighter RBAC controls and monitoring of high‑risk operations A hacking group known as…

If you’re a fan of all things gothic like me, you’ll want to head to HBO Max to check out Maggie Gyllenhaal’s The Bride! as it makes its streaming debut on May 22. At first glance, The Bride! does seem like a disappointment. It didn’t perform well at the box office, making $24 million against…

Microsoft disrupts Fox Tempest operation which abused Azure Artifact Signing to issue fraudulent code‑signing certificates The group created over 1,000 certificates and hundreds of Azure tenants, enabling malware campaigns to bypass security controls Legal action was launched against Fox Tempest and Vanilla Tempest, whose services supported major malware and ransomware distribution Microsoft has taken down…

More than 600 malicious npm packages were published in a coordinated supply‑chain attack linked to TeamPCP’s Shai‑Hulud campaign The attackers compromised ecosystems including TanStack, Mistral, and antv, introducing infostealers and persistence mechanisms in developer environments Developers are advised to roll back to safe versions released before May 18 and rotate any exposed credentials Cybercriminals published…