Biz & IT – Ars Technica

• 2 vulnerabilities with 9.8 severity ratings are under exploit. A 3rd looms 18.5.2022
  Security flaws in VMware and F5's BIG-IP are being exploited by malicious hackers.
• New Bluetooth hack can unlock your Tesla—and all kinds of other devices 18.5.2022
  All it takes to hijack Bluetooth-secured devices is custom code and $100 in hardware.
• Researchers devise iPhone malware that runs even when device is turned off 16.5.2022
  Research is largely theoretical but exposes an overlooked security issue.
• The tech sector teardown is more catharsis than crisis 15.5.2022
  The rules of the game are changing for venture-backed startups.
• How a French satellite operator helps keep Russia’s TV propaganda online 14.5.2022
  Eutelsat refused to stop Russia from broadcasting state-run programming.
• Some top 100,000 websites collect everything you type—before you hit submit 14.5.2022
  A number of websites include keyloggers that covertly snag your keyboard inputs.
• Zyxel silently patches command-injection vulnerability with 9.8 severity rating 12.5.2022
  Flaw makes it possible to install web shell to maintain control of affected devices.
• Backdoor in public repository used new form of attack to target big firms 11.5.2022
  Dependency confusion attacks exploit our trust in public code repositories.
• US and its allies say Russia waged cyberattack that took out satellite network 10.5.2022
  February outage came an hour before Russia began its invasion of Ukraine.
• Netflix’s ad-supported tier will reportedly roll out sooner than expected 10.5.2022
  NYT: Netflix memo to employees said it aims to introduce ad tier in Q4 2022.