Notices by Patrick C Miller :donor: (patrickcmiller@infosec.exchange)

Running DOOM On An Atari ST https://hackaday.com/2025/05/22/running-doom-on-an-atari-st/

Premium WordPress 'Motors' theme vulnerable to admin takeover attacks https://www.bleepingcomputer.com/news/security/premium-wordpress-motors-theme-vulnerable-to-admin-takeover-attacks/

Signal Blocks Windows Recall - Schneier on Security https://www.schneier.com/blog/archives/2025/05/signal-blocks-windows-recall.html

Pandas Galore: Chinese Hackers Boost Attacks in Latin America https://www.darkreading.com/cyber-risk/pandas-galore-chinese-hackers-attacks-latin-america

AWS Default IAM Roles Found to Enable Lateral Movement and Cross-Service Exploitation https://thehackernews.com/2025/05/aws-default-iam-roles-found-to-enable.html

GitLab, Atlassian Patch High-Severity Vulnerabilities https://www.securityweek.com/gitlab-atlassian-patch-high-severity-vulnerabilities/

Mysterious Database of 184 Million Records Exposes Vast Array of Login Credentials https://www.wired.com/story/mysterious-database-logins-governments-social-media/

Russian GRU Cyber Actors Targeting Western Logistics Entities and Tech Companies https://www.cisa.gov/news-events/alerts/2025/05/21/russian-gru-cyber-actors-targeting-western-logistics-entities-and-tech-companies

Samlify bug lets attackers bypass single sign-on https://www.csoonline.com/article/3993262/samlify-bug-lets-attackers-bypass-single-sign-on.html

Rethinking Data Privacy in the Age of Generative AI https://www.darkreading.com/cyber-risk/rethinking-data-privacy-age-generative-ai

Russian Hackers Exploit Email and VPN Vulnerabilities to Spy on Ukraine Aid Logistics https://thehackernews.com/2025/05/russian-hackers-exploit-email-and-vpn.html

Sensitive Personal Data Stolen in West Lothian Ransomware Attack https://www.infosecurity-magazine.com/news/personal-data-stolen-west-lothian/

Kettering Health hit by system-wide outage after ransomware attack https://www.bleepingcomputer.com/news/security/kettering-health-hit-by-system-wide-outage-after-ransomware-attack/

Russian GRU’s Unit 26165 conducts two-year cyber espionage on logistics, tech firms using IP cameras, supply chains https://industrialcyber.co/cisa/russian-grus-unit-26165-conducts-two-year-cyber-espionage-on-logistics-tech-firms-using-ip-cameras-supply-chains/

Cybercrime is 'orders of magnitude' larger than state-backed ops, says ex-White House advisor https://go.theregister.com/feed/www.theregister.com/2025/05/24/cyber_crime_bigger_than_nation_state/

Nerf Blaster Becomes Remote Control Turret https://hackaday.com/2025/05/24/nerf-blaster-becomes-remote-control-turret/

The Newark airport crisis is about to become everyone’s problem https://www.theverge.com/planes/673462/newark-airport-delay-air-traffic-control-tracon-radar

Researchers claim ChatGPT o3 bypassed shutdown in controlled test https://www.bleepingcomputer.com/news/artificial-intelligence/researchers-claim-chatgpt-o3-bypassed-shutdown-in-controlled-test/

Autonomous Weapon Systems: No Human-in-the-Loop Required, and Other Myths Dispelled http://warontherocks.com/2025/05/autonomous-weapon-systems-no-human-in-the-loop-required-and-other-myths-dispelled/

The Crowded Battle: Key Insights from the 2025 State of Pentesting Report https://thehackernews.com/2025/05/the-crowded-battle-key-insights-from.html