News

I Don't Think I Can Pull Off Wearing Meta's Oakley Glasses - Thursday, July 17, 2025 - 17:48
The sports-targeted Oakley HSTN glasses are here for the summer, promising better battery life. But am I sporty enough?
We Sure Watched a Lot of Old Netflix Hits in the First Half of the Year - Thursday, July 17, 2025 - 17:50
Lucifer and Money Heist killed it in viewership.
Wi-Fi Experts Reveal How Trump’s Budget Bill Could Slow Down Your Wi-Fi - Thursday, July 17, 2025 - 18:05
The Federal Communications Commission will be required to auction off public airwaves on the 6GHz band used by the latest Wi-Fi routers.
Unboxing the Oakley HSTN Smart Glasses video - Thursday, July 17, 2025 - 18:34
CNET's Scott Stein unboxes the sportier, stylish Oakley HSTN glasses, which have similar Meta AI functions to the earlier Meta Ray-Bans.
How We Test Antivirus Software - Thursday, July 17, 2025 - 18:55
This is the full process we use to test antivirus software and antivirus companies' cybersecurity suites.
Key Home Energy Tax Credits End This Year. Act Quickly if You're Considering Solar Panels, Experts Say - Thursday, July 17, 2025 - 19:15
Incentives for heat pumps and other home energy and efficiency investments are also expiring early after changes made by Congress and President Trump.
I Take This Cliq Portable Camping Chair Everywhere, and These 2 Colors Are $40 Off Right Now - Thursday, July 17, 2025 - 20:32
The Cliq collapses into a tube the size of a water bottle and still supports 300 pounds. Two colors are now 27% off, making my daily go-anywhere seat even easier to recommend.
Cisco ISE maximum severity flaw lets hackers execute root code - Thursday, July 17, 2025 - 13:00
  • Cisco patched a maximum-severity flaw impacting Identity Services Engine and ISE Passive Identity Connector
  • The flaw allowed threat actors to run arbitrary code on the underlying OS
  • It was patched in versions 3.3 and 3.4

A maximum-severity vulnerability was recently discovered, and patched, in Cisco Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC). This flaw allowed threat actors to execute arbitrary code, with elevated privileges, on the operating system of the devices running the tools.

ISE is a network security policy management and access control platform, helping organizations centrally manage who and what can connect to their network. The ISE-PIC, on the other hand, is a lightweight service that collects identity information about users and devices without requiring them to authenticate via traditional methods.

Both tools are typically used by enterprise IT and cybersecurity teams that manage large or complex network environments.

The importance of patching

Recently, security researcher Kentaro Kawane, from GMO Cybersecurity, discovered an insufficient validation of user-supplied input vulnerability that could be exploited by submitting a crafted API request. Valid credentials are not required to abuse the flaw.

It is tracked as CVE-2025-20337, and was given a severity score of 10/10 (critical). It affects releases 3.3 and 3.4 of the tools, regardless of device configuration. However, releases 3.2 or older are not affected.

Cisco addressed the flaws in these versions:

- Cisco ISE or ISE-PIC Release 3.3 (Fixed in 3.3 Patch 7)
- Cisco ISE or ISE-PIC Release 3.4 (Fixed in 3.4 Patch 2)

The good news is that there is no evidence the vulnerability has been exploited in the wild by malicious actors. However, cybercriminals are known for targeting organizations only after a bug was made public, since many entities don’t rush to apply the patches. By keeping hardware and software outdated, organizations are keeping their back doors wide open, and criminals are getting an easy way into the premises.

Therefore, it would be good practice to apply the patches as soon as possible and prevent possible attacks.

Via The Hacker News

You might also like
Netflix confirms Assassin's Creed live-action TV show is in the works, and I'm praying it doesn't silently kill the popular video game series - Thursday, July 17, 2025 - 13:17
  • Netflix has announced an Assassin's Creed TV series is coming to the streamer
  • It has been in the making for almost five years but we don't have much information yet
  • The plot describes the series as "a high-octane thriller centered on the secret war between two shadowy factions"

Netflix has greenlit an Assassin's Creed TV adaptation, giving me hope once again after previous attempts to adapt the video game for the screen have flopped.

In 2016, the Michael Fassbender led movie was critically panned and received an 18% Rotten Tomatoes critical score. But news that the story is coming to one of the best streaming services has piqued my interest.

We have seen some huge success with video game adaptations recently, of course, like Prime Video's Fallout or HBO's The Last of Us, so we can only hope that second time's a charm when it comes to Assassin's Creed.

What do we know about Netflix's Assassin's Creed?

The Assassin's Creed movie was a critical flop. (Image credit: New Regency Productions)

At the time of writing, we don't know much. Netflix hasn't released a trailer or a cast list, but they have confirmed who is leading the project.

Emmy nominees Roberto Patino (Westworld) and David Wiener (Halo) will serve as creators, showrunners, and executive producers on the Assassin's Creed series. Given their work on some big shows, this does fill me with hope.

The Halo video game to screen adaptation scored a healthy 80% on Rotten Tomatoes, making it worthy of a spot on our best Paramount+ shows, so that's a positive start.

In terms of plot, all we have so far is a statement from Tudum which reads: "Assassin’s Creed is a high-octane thriller centered on the secret war between two shadowy factions — one set on determining mankind’s future through control and manipulation, while the other fights to preserve free will."

It adds: “The series follows its characters across pivotal historical events as they battle to shape humanity’s destiny.”

That isn't a lot to go off, and fans of the video games already know the universe well, so it will be interesting to see how far it sticks with or deviates from the source material.

Either way, I'm excited to give this one a go and pray it will one day be added to our best Netflix shows list.

You might also like
Today's NYT Mini Crossword Answers for Friday, July 18 - Thursday, July 17, 2025 - 22:14
Here are the answers for The New York Times Mini Crossword for July 18.
Want to Take Your Best-Ever Vacation Photos? My Pro Tips Will Level Up Your Game - Friday, July 18, 2025 - 00:00
Wherever you're going on vacation you'll find endless opportunities for amazing photos. Here's how to capture them.
Plans to Refinance?: Refinance Rates for July 18, 2025 - Friday, July 18, 2025 - 04:00
Refinance rates were mixed this week.
Round Out Your Diet With More Protein. Here Are 7 Easy Ways to Increase Your Protein Intake - Friday, July 18, 2025 - 04:00
Protein is essential for staying fit and healthy, and these tips can help you get your daily fix.
Key Rates Move Higher for Homebuyers: Today's Mortgage Rates for July 18, 2025 - Friday, July 18, 2025 - 04:05
Experts say homebuying activity will increase as mortgage rates fall, but that might not happen for a while.
Today's NYT Strands Hints, Answers and Help for July 19 #503 - Friday, July 18, 2025 - 05:00
Here are hints and answers for the NYT Strands puzzle for July 19 No. 503.
Did You Get Spammed With Messages From Cash App? You Might Qualify for a Settlement Payment - Friday, July 18, 2025 - 05:00
The company was accused of using a referral program to send unsolicited texts, and now affected users can get paid for the trouble.
The Hottest Movie Releases Dropping in 2025 - Friday, July 18, 2025 - 06:00
From The Fantastic Four: First Steps to Wicked: For Good and Tron: Ares, just how many themed popcorn buckets can one fan buy?
Samsung S90F OLED TV Review: Great Picture for Gaming, Movies and More - Friday, July 18, 2025 - 06:00
The Samsung S90F is able to match the higher-end S95F for picture quality, though it lacks the superior anti-glare system.
No, That Taste of Wine a Server Offers Is Not to See if You Like It. Here's Why - Friday, July 18, 2025 - 06:33
If you're unsure of how to approach that small sip of wine from a newly opened bottle, here's what wine pros say to look, smell and taste for.
Convenience over privacy? Nearly one in three Brits sharing confidential information with AI chatbots - Friday, July 18, 2025 - 04:00
  • 30% of Britons are providing AI chatbots with confidential personal information
  • Research from NymVPN shows company and customer data is also at risk
  • Emphasizes the importance of taking precautions, like using a quality VPN

Almost one in three Britons shares sensitive personal data with AI chatbots like OpenAI’s ChatGPT, according to research from cybersecurity company NymVPN. 30% of Brits have fed AI chatbots with confidential information such as health and banking data, potentially putting their privacy – and that of others – at risk.

This oversharing with the likes of ChatGPT and Google Gemini comes despite 48% of respondents expressing privacy concerns over AI chatbots. This signals that the issue extends to the workplace, with employees sharing sensitive company and customer data.

NymVPN’s findings come in the wake of a number of recent high-profile data breaches, most notably the Marks & Spencer cyber attack, which shows just how easily confidential data can fall into the wrong hands.

“Convenience is being prioritized over security”

NymVPN’s research reveals that 26% of respondents admitted to disclosing financial information related to salary, investments, and mortgages to AI chatbots. Riskier still, 18% shared credit card or bank account data.

24% of those surveyed by NymVPN admit to having shared customer data – including names and email addresses – with AI chatbots. More worrying still, 16% uploaded company financial data and internal documents such as contracts. This is despite 43% expressing worry about sensitive company data being leaked by AI tools.

“AI tools have rapidly become part of how people work, but we’re seeing a worrying trend where convenience is being prioritized over security,” said Harry Halpin, CEO of NymVPN.

M&S, Co-op, and Adidas have all been in the headlines for the wrong reasons, having fallen victim to data breaches. “High-profile breaches show how vulnerable even major organizations can be, and the more personal and corporate data that is fed into AI, the bigger the target becomes for cybercriminals,” said Halpin.

The importance of not oversharing

Since nearly a quarter of respondents share customer data with AI chatbots, this emphasizes the urgency of companies implementing clear guidelines and formal policies for the use of AI in the workplace.

“Employees and businesses urgently need to think about how they’re protecting both personal privacy and company data when using AI tools,” said Halpin.

Although avoiding AI chatbots entirely would be the optimal solution for privacy, it’s not always the most practical. Users should, at the very least, avoid sharing sensitive information with AI chatbots. Privacy settings can also be tweaked, such as disabling chat history or opting out of model training.

A VPN can add a layer of privacy when using AI chatbots such as ChatGPT, encrypting a user’s internet traffic and original IP address. This helps keep a user’s location private and prevents their ISP from seeing what they’re doing online. Still, even the best VPN isn’t enough if sensitive personal data is still being fed to AI.

Pages