China-associated threat actors breached US broadband providers, accessing the private communications of specific US government officials. This large-scale cyber-espionage operation targeted telecommunications networks to steal data and copied details subject to US law enforcement court orders. This breach carries a significant national security risk, potentially revealing systems for lawful wiretapping. The operation is thought to be part of China’s broader cyber espionage strategy.
Malicious JPEG Images Could Trigger PHP Memory Safety Vulnerabilities
Two critical memory-safety vulnerabilities in PHP’s image-processing functions could allow attackers to leak sensitive heap memory or to execute denial-of-service attacks via specially crafted JPEG
