MITRE CVE Program Funding Halt Imminence

April 15, 2025, 8:20 pm

The MITRE Corporation alerted that its stewardship of the world’s centralized Common Vulnerabilities and Exposures (CVE) program might end shortly because the federal government has chosen not to renew its contract. In tandem, government funding was abruptly halted, casting uncertainty over the continuity of a critical system that monitors and catalogs security flaws in products. This decision is raising concerns among cybersecurity experts who fear that losing established support may disrupt coordinated vulnerability management and delay remediation efforts, potentially impacting both public and private sector security measures.

theregister.com / US abruptly turns off funding for CVE program

therecord.media / MITRE warns of lapse with CVE program as contract with US set to expire

theregister.com / Uncle Sam abruptly turns off funding for CVE program. Yes, that CVE program

3 stories from 3 sources in 1 hour ago ... #cybersecurity #software #open-source #infosec #datascience +

"DOGE Unit Controversy Sparks Legal and Whistleblower Concerns

April 15, 2025, 2:20 pm

Two pieces cover a controversial development within a Trump-era DOGE unit at the US Treasury. One report explains that a federal judge has partially lifted an injunction to permit a lone staff member access to sensitive Treasury systems, while the other details allegations of a whistleblower being stalked by a drone after lodging a DOGE-related complaint. Both stories highlight serious legal and security concerns over the operations and oversight of this unit.

google.com / DOGE trumpets unemployment fraud that government already found - AP News

theregister.com / All right, you can have one: DOGE access to Treasury IT OK'd judge

google.com / Whistleblower org says DOGE may have caused 'significant cyber breach' at US labor watchdog - Reuters

4 stories from 4 sources in 7 hours ago ... #cybersecurity #dataprivacy #techpolicy #doge #infosec +

"Apple Releases iOS 18.5 Public Beta Updates and Bug Fixes

April 15, 2025, 2:20 pm

Two articles report on Apple’s rollout of its iOS 18.5 (and related macOS) public beta updates, which include minor improvements such as Mail app upgrades and interface tweaks. They describe these betas as a preview of the upcoming software refinements aimed at resolving persistent bugs and enhancing overall user experience, ahead of major events like WWDC. The updates are positioned as both maintenance and preparation for future system overhauls.

Bluesky: @macrumors.bsky.social

cnet.com / Installing the iOS 18.5 Public Beta? Honest Advice About Why You Should Wait

cnet.com / iOS 18.5 Public Beta 1 Adds Some Mail Upgrades, Not Much Else

macrumors.com / Apple Releases iOS 18.5 and macOS Sequoia 15.5 Public Betas

4 stories from 3 sources in 7 hours ago ... #cybersecurity #software #mobile #apple #digital-transformation +

4chan hack exposes internal data leak during meme war

April 15, 2025, 12:20 pm

Multiple reports indicate that the notorious image board 4chan was hit by a coordinated hack, resulting in service disruptions and the leak of sensitive internal data such as moderators' email addresses, source code, and internal communications. The hack appears to have been spurred by an ongoing meme war, leaving the site intermittently offline and highlighting serious security vulnerabilities.

Reddit: r/hacking

Bluesky: @arstechnica.com, @bleepingcomputer.com, @gizmodo.com, @religionprof.bsky.social

google.com / Notorious internet messageboard 4chan has been hacked, posts claim - Reuters

wired.com / Suspected 4chan Hack Could Expose Longtime, Anonymous Admins

theregister.com / 4chan, the 'internet’s litter box,' appears to have been pillaged by rival forum

arstechnica.com / 4chan has been down since Monday night after “pretty comprehensive own”

bleepingcomputer.com / Infamous message board 4chan taken down following major hack

gizmodo.com / Internet Cesspool 4chan Is Down After Alleged Hack, Rival Forum Users Claim Credit

techcrunch.com / Notorious image board 4chan hacked and internal data leaked

14 stories from 11 sources in 9 hours ago ... #cybersecurity #digital-transformation #open-source #dataprivacy #analytics +

Hertz Cyber Breach via Vendor Vulnerability Exposes Customer Data

April 15, 2025, 7:20 am

Two separate stories report on a significant cybersecurity incident involving Hertz. Hackers exploited vulnerabilities in a third‑party file transfer system to access sensitive customer data, including credit card details and driver’s license information. Both reports underscore how the zero‑day attack, executed via compromised Cleo products, has exposed critical flaws in vendor network security, prompting concerns over data protection practices for large multinational companies.

cnet.com / Hertz Data Breach Included Credit Card, Personal Data: Here's What You Should Know

theregister.com / Where it Hertz: Customer data driven off in Cleo attacks

theverge.com / Hertz says hackers stole customer credit card and driver’s license data

3 stories from 3 sources in 14 hours ago ... #cybersecurity #dataprivacy #infosec #cloudsec #big-data +

Harvard funding lawsuit over Trump‐admin demands

April 14, 2025, 2:20 pm

Harvard University faces a high‐stakes confrontation with the Trump administration after a federal letter demanded sweeping changes—ranging from overhauling anti‐discrimination policies to eliminating diversity programs—with a threat to withhold nearly $9 billion in funding if the university did not comply. In response, Harvard professors have initiated legal action, arguing that these coercive measures infringe on academic freedom and free speech while undermining the integrity of the institution.

arstechnica.com / Harvard says no chance it will comply with changes feds demand

harvard.edu / Harvard's response to federal government letter demanding changes

zerohedge.com / Harvard Professors Sue Trump Admin Over Threat To Withhold Nearly $9 Billion

3 stories from 3 sources in 31 hours ago ... #techpolicy #dataprivacy #infosec #cloudsec #innovation +

US and El Salvador Clash Over Abrego Garcia Deportation

April 14, 2025, 11:48 am

The controversy surrounding the deportation of Abrego Garcia has escalated as hints of possible repatriation emerge amid fierce criticism. Former President Trump acknowledged that the U.S. could retrieve the wrongly deported man from his detention facility, yet official policy remains unchanged. Meanwhile, President Nayib Bukele of El Salvador is scheduled to visit the White House to discuss the detention measures and broader deportation plans, raising significant legal and humanitarian concerns over administrative errors and immigration enforcement.

Reddit: r/thedavidpakmanshow

Bluesky: @tafnn.bsky.social, @verge-poster.bsky.social, @carpenter22.bsky.social, @smeisler.bsky.social, @tdrto000.bsky.social

theverge.com / Trump says he wants to deport some US citizens, too

techdirt.com / Trump & Bukele Plot US Citizen Detention In Salvadoran Torture Camps, While Defying Supreme Court Via Gibberish Responses To Reporters

techdirt.com / Trump Admits US Can Get Abrego Garcia Back From Torture Camp He Was Accidentally Sent To; But DOJ Makes Clear It Won’t Even Ask

zerohedge.com / El Salvador President To Visit White House To Discuss Deportation, Prison Plans

10 stories from 5 sources in 33 hours ago ... #cybersecurity #techpolicy #infosec #defensetech #dataprivacy +

Hackers Target Silicon Valley Crosswalk Audio Systems

April 14, 2025, 11:20 am

Two reports detail a security breach in Silicon Valley’s crosswalk systems where hackers manipulated the audio alerts, making them mimic voices similar to those of tech giants like Elon Musk and Mark Zuckerberg. Both articles explain that the hack altered the crosswalk buttons’ vocal outputs, raising concerns about public infrastructure vulnerabilities and prompting calls for improved digital security measures in urban environments.

Bluesky: @gizmodo.com

techspot.com / Silicon Valley crosswalks hacked to play fake AI voices of Musk and Zuckerberg

gizmodo.com / Crosswalks in Silicon Valley Hacked to Talk Like Musk and Zuckerberg

techcrunch.com / Silicon Valley crosswalk buttons hacked to imitate Musk, Zuckerberg voices

4 stories from 4 sources in 34 hours ago ... #cybersecurity #infosec #voice #meta #ai +

Trump tariffs shake tech investments and semiconductor policies

April 14, 2025, 10:20 am

Multiple stories report on President Trump’s evolving tariff policies aimed at reshaping the U.S. electronics and semiconductor landscape. Announcements indicate plans to impose new chip tariffs while also witnessing abrupt policy shifts that have left IT projects in limbo. The discourse spans expectations of stricter measures affecting tech manufacturing investments alongside industry concerns over uncertainty. This cluster emphasizes the administration’s broad impact on technology and trade, highlighting divergent viewpoints and resulting market disruptions.

Bluesky: @appleinsider.com, @appleinsider.com

zerohedge.com / Can The Work Ethic Make A Return?

techinasia.com / Taiwan stocks may rebound on US tariff exemptions

macrumors.com / Trump Planning Semiconductor Tariffs That Will Impact Apple, No One 'Getting Off the Hook'

bgr.com / Trump’s tariffs might ruin the iPhone 17 Air for me

zerohedge.com / No, A 50% Tariff Doesn't Mean A 50% Price-Hike

androidheadlines.com / Legal battle erupts as Trump tariffs face challenge from US businesses

zerohedge.com / China Would Lose A 'Trade War' With The US... "Gradually, Then Suddenly"

cnbc.com / Apple regains $3 trillion market cap after Trump exempts tariffs on iPhones

zerohedge.com / "Things Are Breaking 'Out There'..."

zerohedge.com / Art Of The Deal

19 stories from 13 sources in 35 hours ago ... #hardware #semiconductors #techpolicy #chips #infosec +