Central Maine Healthcare breach exposed data of over 145,000 people
Central Maine Healthcare just fessed up to a nasty data breach from last year, where hackers lurked in their systems for over two months between March and Ju...
RAMBO: Air-Gapped Systems Attacked via Radio Signals
RAMBO: Exploiting Air-Gapped Systems via Radio Signals
Air-gapped systems are often considered one of the most secure setups, designed to isolate critical systems from external networks and the internet. However, a recently discovered attack vector known as RAMBO (Radio Memory Buses Operation) challenges this assumption.
What is RAMBO?
RAMBO is an advanced side-channel attack that exploits electromagnetic emissions generated by a computer’s RAM. In a compromised system, malware can manipulate these emissions to encode sensitive information such as files, keylog data, and encryption keys into radio signals. These signals can be intercepted and decoded by attackers using software-defined radio (SDR) hardware and a basic antenna from a nearby location.
Key Highlights
- Air-Gapped System Vulnerability: Even without network access, malware can leak data from air-gapped systems by leveraging electromagnetic emissions from RAM.
- Data Extraction: Information can be exfiltrated at speeds up to 1000 bits per second, making it feasible to leak files, encryption keys, and biometric data.
- Hardware Requirements: The attacker only needs SDR hardware and an off-the-shelf antenna to receive and decode the transmitted radio signals from nearby.
How RAMBO Works
The attack works by causing the RAM to emit specific electromagnetic frequencies during its normal operation. Malware on the compromised machine manipulates this emission, encoding the data into a format that can be intercepted. Once the signals are captured, they can be decoded back into binary information, revealing the sensitive content.
Implications
This discovery presents a significant threat to sectors relying on air-gapped systems for security, such as military installations, government facilities, and critical infrastructure operations. Traditional air-gapping may no longer be enough to protect sensitive data from sophisticated cyber threats.
Countermeasures
While mitigation strategies like shielding memory modules and using signal jammers have been proposed, the evolving nature of side-channel attacks requires ongoing attention. Organizations must rethink their security posture for air-gapped environments to counter such sophisticated attack vectors.
For further details on the RAMBO attack, check out the research paper here.
2026
Apple confirms Google Gemini will power Siri, says privacy remains a priority
Apple’s finally admitting defeat with its lackluster in-house AI for Siri and is partnering with Google for a multi-year deal, swapping in Google’s more robu...
Anthropic brings Claude to healthcare with HIPAA-ready Enterprise tools
Anthropic is rolling out its Claude AI platform to the healthcare sector with HIPAA-compliant Enterprise tools, following OpenAI’s playbook for ChatGPT, and ...
Democrats ask Apple and Google to remove X’s undressing bot from their app stores
Democratic senators are calling out Apple and Google for turning a blind eye to X’s AI chatbot, Grok, which is essentially letting users generate creepy, non...
Health care data breach affects over 600k patients, Illinois agency says
The Illinois Department of Human Services just fessed up to a major data blunder, where sensitive info like names, addresses, and case details for over 670,0...
Are Copilot prompt injection flaws vulnerabilities or AI limits?
Microsoft’s Copilot AI is facing scrutiny over prompt injection and sandbox bypasses that a security researcher claims are vulnerabilities, but the company d...
NordVPN denies breach claims, says attackers have “dummy data”
NordVPN is pushing back hard against claims of a server breach, insisting that hackers only snagged some harmless “dummy data” from a temporary third-party t...
Google is testing a new image AI and it’s going to be its fastest model
Google’s rolling out a new image AI model, Nano Banana 2 Flash, as part of its speedy Gemini Flash lineup, promising to crank out visuals faster than the bee...
Cryptocurrency theft attacks traced to 2022 LastPass breach
Investigations by TRM Labs have pinned a string of cryptocurrency heists on the 2022 LastPass breach, where hackers swiped encrypted vaults containing wallet...
European Space Agency confirms breach of “external servers”
The European Space Agency (ESA) has fessed up to a cyberattack on some of its external servers, which held unclassified data related to collaborative enginee...
2025
Anker’s portable backup battery is an even better investment now that it’s nearly half off
With winter storms knocking out power left and right, Anker’s 521 PowerHouse portable battery is a smart, no-nonsense backup for tech-savvy small-business ow...
How AI could close the education inequality gap - or widen it
AI’s rise in education is a double-edged sword, potentially bridging the yawning inequality gap by offering affordable, always-on tutoring tools like custom ...
How AI coding agents work—and what to remember if you use them
AI coding agents are basically supercharged LLMs that help automate coding tasks, but they’re handcuffed by context limits that cap how much code they can ju...
35+ best products we tested in 2025: Expert picks for phones, TVs, AI, and more
ZDNET’s 2025 Best of awards spotlight over 35 gadgets that aced our brutal real-world tests, from ultra-thin foldables to AI tools that actually deliver on p...
Google’s and OpenAI’s Chatbots Can Strip Women in Photos Down to Bikinis
Google’s Gemini and OpenAI’s ChatGPT chatbots, despite their built-in guardrails, are being exploited by shady users to whip up deepfake images that strip fu...
Baker University says 2024 data breach impacts 53,000 people
Baker University’s recent data breach, stemming from a December 2024 intrusion, exposed sensitive info like Social Security numbers, financial details, and h...
Best home automation systems 2025: As a smart home reviewer I rounded up the top ones
Diving into the best home automation systems for 2025, it’s all about balancing tech smarts with your wallet—think startup costs for the basics like a $50-$2...
Coupang breach affecting 33.7 million users raises data protection questions
South Korea’s e-commerce giant Coupang just fumbled a massive data breach, exposing the personal info of 33
6 Scary Predictions for AI in 2026
As OpenAI scrambles with its “code red” alert to outmaneuver Google—echoing the search giant’s own panic-fueled layoffs a few years back—it’s easy to see why...
Clop ransomware targets Gladinet CentreStack in data theft attacks
The notorious Clop ransomware crew is at it again, zeroing in on exposed Gladinet CentreStack servers to pull off data theft and extortion schemes, exploitin...
Hurry! Claim your free ByteSim for your next trip to Japan exclusively on TechRadar
If you’re a tech-savvy traveler eyeing a winter jaunt to Japan and tired of fumbling with airport SIMs or flaky WiFi, snag this exclusive deal: ByteSim is ho...
5 things businesses and users should remember when using AI chatbots
Look, if you’re an SMB or MSP diving into AI chatbots for customer service or internal tools, don’t kid yourself—these systems are basically digital elephant...
A Safer Container Ecosystem with Docker: Free Docker Hardened Images
Docker’s rolling out free hardened images to bolster container security, making it easier for SMBs and MSPs to lock down their ecosystems without breaking th...
Browser extensions with 8 million users collect extended AI conversations
If you’re running a small business and rely on AI chatbots like ChatGPT or Gemini for quick insights, watch out—extensions such as Urban VPN Proxy and its sh...
Artie (YC S23) Is Hiring Senior Enterprise AES
Artie’s YC-backed CDC platform is streamlining real-time data replication from databases to warehouses with minimal fuss, making life easier for engineering ...
Stranger Things S5 trailer teases Vol. 2
Netflix’s latest trailer for Stranger Things Season 5, Volume 2—dropping in just 10 days—gives fans a glimpse of episodes five through seven, building on the...
2025’s Top Phishing Trends and What They Mean for Your Security Strategy
In 2025, phishing attacks got craftier than ever, with hackers ditching email for an omni-channel free-for-all, like sneaky LinkedIn DMs and rigged Google se...
10 things I wish I knew before trusting Claude Code to build my iPhone app
When I dove into using Claude Code to whip up an iPhone app for tracking 3D printer filament, I quickly learned that treating AI like a magic code genie with...
New Windows RasMan zero-day flaw gets free, unofficial patches
If you’re running a small business or managing IT for one, the latest zero-day flaw in Windows’ RasMan service—that critical background beast handling VPNs a...
Chatbot-powered toys rebuked for discussing sexual, dangerous topics with kids
OpenAI is cracking down on chatbot-infused toys like those from Alilo, which have been caught dishing out inappropriate chats on sex and risky topics to kids...
Google fixes eighth Chrome zero-day exploited in attacks in 2025
Google’s just dropped an emergency patch for the eighth Chrome zero-day vulnerability exploited in the wild this year, a sneaky buffer overflow in their LibA...
Chatbots are struggling with suicide hotline numbers
AI chatbots, meant to be helpful allies, are fumbling badly when users in crisis ask for suicide hotline numbers, often dishing out irrelevant resources, dod...
Big Tech joins forces with Linux Foundation to standardize AI agents
Big Tech is teaming up with the Linux Foundation to bring some much-needed order to the chaotic world of AI agents through the Autonomous Agents Interoperabi...
Microsoft investigates Copilot outage affecting users in Europe
Microsoft’s AI-powered Copilot assistant is currently down for users in Europe and the UK, thanks to a nasty capacity scaling glitch triggered by a sudden tr...
Gemini vs. Copilot: I tested the AI tools on 7 everyday tasks, and it wasn’t even close
In a no-holds-barred smackdown, Google’s Gemini handily outshone Microsoft’s Copilot across seven real-world tasks I threw at them, making it a clear favorit...
Barts Health NHS discloses data breach after Oracle zero-day hack
Barts Health NHS Trust, a big UK hospital operator, just fessed up to a data breach where the Clop ransomware gang exploited a nasty zero-day flaw in Oracle’...
I had a big audio transcription problem – Gemini solved it, and ChatGPT didn’t
I recently ran into a classic headache transcribing an interview audio from iPhone Notes—it nailed the words but totally botched separating speakers, turning...
Critical React2Shell flaw actively exploited in China-linked attacks
Look, if you’re running React or Next
AI chatbots can be wooed into crimes with poetry
Italian researchers from Icaro Lab have uncovered a cheeky way to sidestep AI chatbot safeguards—simply wrap your shady requests in poetry, and suddenly, bot...
AI browsers are rewriting the rules. Is your security keeping pace?
AI browsers like Microsoft’s Edge with Copilot and Google’s Chrome with Gemini are flipping the script on web surfing, turning your browser into a smart side...
University of Phoenix discloses data breach after Oracle hack
The University of Phoenix recently admitted to a data breach stemming from a Clop ransomware gang’s exploitation of a zero-day vulnerability in Oracle’s E-Bu...
Fake Calendly invites spoof top brands to hijack ad manager accounts
Watch out, SMBs and MSPs: cybercriminals are pulling off a slick phishing scam using fake Calendly invites that masquerade as recruiters from big names like ...
Addressing the adding situation
In the quirky world of x86 architecture, adding two integers isn’t as straightforward as you’d expect—thanks to its finicky two-operand limit that forces ins...
Man behind in-flight Evil Twin WiFi attacks gets 7 years in prison
A 44-year-old Aussie hacker just got slapped with a seven-year-plus prison sentence for pulling off sneaky “evil twin” WiFi attacks, where he used a WiFi Pin...
A vector graphics workstation from the 70s
Digging into this vintage beast, the Tektronix 4051—a 1975 vector graphics workstation that packed a Motorola 6800 CPU and up to 32KB of RAM into a hefty 35k...
French Football Federation discloses data breach after cyberattack
The French Football Federation (FFF) recently fessed up to a data breach where hackers snagged access to their admin software via a hijacked account, exposin...
Malicious LLMs empower inexperienced hackers with advanced tools
Malicious large language models like WormGPT 4 and KawaiiGPT are basically handing out cybercrime starter kits, letting script kiddies crank out sophisticate...
OpenAI discloses API customer data breach via Mixpanel vendor hack
OpenAI just fessed up to a sneaky data slip involving some ChatGPT API users, all thanks to a smishing attack on their analytics vendor, Mixpanel—yeah, that ...
Mixpanel Security Breach
Mixpanel recently spilled the beans on a security hiccup involving a smishing attack that snuck up on a handful of customers back on November 8th, 2025, prov...
ChatGPT and Copilot are being booted out of WhatsApp
Meta’s cracking down on its WhatsApp platform by kicking out rival AI chatbots like OpenAI’s ChatGPT and Microsoft’s Copilot starting January 15, 2026, thank...
FBI: Cybercriminals stole $262M by impersonating bank support teams
The FBI’s latest alert reveals that cybercriminals have swiped a whopping $262 million this year by impersonating bank support teams in sophisticated account...
Microsoft: Exchange Online outage blocks access to Outlook mailboxes
Microsoft’s Exchange Online is throwing a curveball, blocking access to mailboxes via the classic Outlook desktop app for users in Asia Pacific and North Ame...
Harvard University discloses data breach affecting alumni, donors
Harvard just fessed up to a sneaky voice phishing attack that infiltrated their Alumni Affairs and Development systems, exposing email addresses, phone numbe...
When prevention fails: the case for building cyber resilience, not walls
Look, if you’re still banking on that old-school fortress approach to cybersecurity—piling up firewalls like they’re medieval castle walls—you’re setting you...
Amazon Is Using Specialized AI Agents for Deep Bug Hunting
Amazon’s latest AI wizardry, dubbed Autonomous Threat Analysis (ATA), is a smart move to outpace hackers in the escalating arms race of software security, es...
Cox Enterprises discloses Oracle E-Business Suite data breach
Cox Enterprises just fessed up to a nasty data breach where hackers exploited a zero-day vulnerability in Oracle’s E-Business Suite, snagging personal info f...
CISA warns Oracle Identity Manager RCE flaw is being actively exploited
CISA is sounding the alarm on CVE-2025-61757, a sneaky pre-authentication remote code execution flaw in Oracle Identity Manager that’s already being exploite...
4 better ways to protect your business than dreaded (and useless) anti-phishing training
Look, if you’re running an SMB or MSP and still banking on those yawn-inducing anti-phishing training sessions that employees breeze through in under a minut...
Anthropic Will Use Claude Chats for Training Data. Here’s How to Opt Out
Anthropic is flipping the script on its Claude chatbot, deciding to scoop up user chats and coding sessions as fodder for training its AI models starting Oct...
Anthropic’s Claude Sonnet 4.5 is available now - ‘the best AI model in the world for real-world agents, coding, and computer use’
Anthropic has just dropped Claude Sonnet 4
ChatGPT is crushing rivals in the AI chatbot race by all measures - but for how long?
ChatGPT is absolutely dominating the AI chatbot scene right now, pulling in massive user numbers and market share according to trackers like Comscore, Statco...
ChatGPT just got several work-friendly updates - what it can do now
OpenAI’s latest updates to ChatGPT are geared toward turning it into a more reliable workhorse for teams, starting with a shared projects mode that lets coll...
5 ways you can maximize AI’s big impact in software development
At Subvertec, we’re all about cutting through the hype to help tech-savvy pros and small-business owners harness AI without getting burned—think of it as upg...
Show HN: A little notebook for learning linear algebra with Python
Subvertec’s take on this HN post? It’s a straightforward Python notebook that cuts through the fluff of linear algebra, using NumPy to walk you through every...
This viral app paid users to sell their private phone calls to AI firms – now it’s offline after a shocking data breach
Neon, a sketchy app that lured users into recording their phone calls for quick cash to train AI models, has been yanked offline after a laughably simple sec...
AI helps strong dev teams and hurts weak ones, according to Google’s 2025 DORA report
Google’s 2025 DORA report reveals that AI is a double-edged sword for software dev teams, supercharging the efficient ones while exposing and exacerbating th...
When “no” means “yes”: Why AI chatbots can’t process Persian social etiquette
Persian culture’s taarof ritual—think of it as a polite game of verbal ping-pong where refusing an offer three times is just a warm-up—totally stumps mainstr...
How HubSpot Scaled AI Adoption
HubSpot’s engineering team kicked off their AI adventure with GitHub Copilot back in 2023, evolving from tentative trials to nearly everyone on board, thanks...
2024
Clever Prompts to Maximize AI Use Without Breaking Rules
Discover how to cleverly prompt AI systems for maximum output without violating rules or ethical standards.
Ethical Considerations When Circumventing AI Restrictions
While clever prompting can help you avoid AI restrictions, understanding the ethical boundaries is critical.
Using Hypotheticals to Circumvent AI Restrictions
Explore how hypothetical questions can help you get the information you need without triggering AI restrictions.
Contextualizing AI Requests for Optimal Responses
Learn how to provide context in your AI prompts to get more accurate and relevant responses while staying within guidelines.
Rephrasing Prompts to Navigate AI Restrictions
Discover how rephrasing prompts can help you navigate AI restrictions without violating ethical guidelines.
Understanding AI Restrictions: Why They Exist and How They Work
Learn why AI systems have restrictions, and what types of content or actions they block to ensure ethical usage.
The Role of AI in Data Privacy and Compliance
Learn how AI can help businesses comply with data privacy regulations like GDPR and CCPA, and safeguard customer data.
AI-Powered Personalization: How to Increase Customer Loyalty and Sales
Discover how AI can personalize customer experiences, predict buying behavior, and create targeted marketing campaigns to boost customer loyalty and sales.
How to Start Small with AI: Pilot Projects that Show Immediate ROI
Learn how to implement small, manageable AI pilot projects that demonstrate immediate ROI and set the stage for future AI integration in your business.
Understanding the Costs of AI Implementation
Explore the typical costs associated with adopting AI, from pilot programs to full-scale deployments. Learn how to budget for your AI journey.
Top 5 Ways AI Can Improve Your Business Efficiency
Explore how AI can streamline operations, enhance customer service, and optimize workflows to boost your business efficiency.
Top 5 AI Prompt Add-Ons to Ensure High-Quality Results
Discover the top 5 AI prompt techniques to ensure high-quality and efficient results from your AI tools. Learn how to optimize AI interactions for business s...
How Attackers Exploit BitLocker and TPM: Physical Access During Boot
Learn how attackers exploit BitLocker and TPM with physical access during boot and discover strategies to mitigate these risks.
RAMBO: Air-Gapped Systems Attacked via Radio Signals
Learn how the RAMBO side-channel attack uses electromagnetic emissions to exfiltrate data from air-gapped systems without network access.
Advanced Pi-hole Configuration: Maximize Your Network Ad Blocker
Enhance your Pi-hole with advanced configurations, custom block lists, performance tweaks, and integration with other security tools.
Set Up Pi-hole with Docker Compose for Ad Blocking & Security
Learn how to set up Pi-hole using Docker Compose to block ads and secure your network across various hardware platforms.
Alternative Windows Backup Methods for Data Protection
Explore free alternative methods for backing up Windows data and protect your information effectively without relying on costly backup solutions.
3-2-1 Backup Strategy
Explore the 3-2-1 backup strategy, a reliable method for ensuring data redundancy and recovery. Learn how to protect your data from loss with this simple yet...
Threat Landscape for Legal Firms
Understand the unique cybersecurity threats facing legal firms today. Discover how to safeguard your practice from data breaches, ransomware, and insider thr...
The Importance of Regularly Backing Up Data
Learn why regular data backups are crucial for your business. Protect your valuable information from loss, corruption, and cyber threats by implementing a re...