Home » Categories

Technology

OnePlus Phones Hit by SMS Security Flaw in OxygenOS

OnePlus Phones Hit by SMS Security Flaw in OxygenOS

OnePlus Phones Hit by SMS Security Flaw in OxygenOS (TheVerge) Security researchers at Rapid7 have uncovered a serious vulnerability in OnePlus phones running OxygenOS, tracked as CVE-2025-10184. The flaw, if exploited, could allow attackers to hijack user accounts through malicious SMS messages. What’s the problem? The bug lies in OxygenOS’s built-in SMS handling system. Crafted SMS messages can trick the device into executing unintended actions. Attackers could exploit the flaw to: Bypass authentication. Hijack user accounts tied to phone numbers. Launch phishing or malware campaigns by leveraging the trusted device. This makes it especially dangerous for users who rely on SMS for two-factor authentication (2FA). ...

October 2, 2025 · 1 min · TechLife
NVIDIA AI Day Tokyo

NVIDIA AI Day Tokyo: Japan’s AI Demand Set to Soar 320x by 2030

NVIDIA AI Day Tokyo: Japan’s AI Demand Set to Soar 320x by 2030 At NVIDIA AI Day Tokyo, over 900 attendees gathered to explore the future of artificial intelligence and Japan’s vision for sovereign AI. The highlight: a bold prediction that Japan’s demand for AI computing power will rise 320 times by 2030 compared to 2020. Sovereign AI and National Strategy Kuniyoshi Suzuki, senior director at SoftBank Corp., emphasized the need for domestic AI technologies. He called for Japan-made large language models (LLMs) and local computing infrastructure to ensure safe and transparent AI adoption. ...

October 2, 2025 · 2 min · TechLife
Windows 11

The Next Big Leap for Windows 11: Unpacking the 2024 (24H2) Update

The Next Big Leap for Windows 11: Unpacking the 2024 (24H2) Update Microsoft’s significant annual feature update, the Windows 11 2024 Update (version 24H2), is now rolling out. This release focuses on next-generation AI capabilities and core quality-of-life improvements. What are the key AI features? These features are primarily available on new Copilot+ PCs with dedicated Neural Processing Units (NPUs). Recall: Creates a searchable, visual timeline of your PC activity, allowing you to find anything you’ve seen with natural language. Windows Studio Effects: Delivers new AI-powered camera filters and improved lighting/audio adjustments for video calls. Cocreator: Allows users to generate and edit images using text prompts directly within apps like Paint and Photos. What are the upgrades for all users? File Explorer: Now includes native support for creating 7-Zip and TAR archives. Copilot: The AI assistant evolves from a sidebar into a pinnable app, offering more flexibility. Sudo for Windows: The popular sudo command is integrated, allowing for easy execution of elevated commands. Energy Saver: A new, more effective mode to extend the battery life of laptops. How & When to Get the Update The update is being deployed in phases to ensure stability. The general rollout for existing PCs began around October 1, 2024. You can manually check for the update by going to Settings > Windows Update and clicking “Check for updates.”

October 2, 2025 · 2 min · TechLife
Cisco

Cisco Warns of Zero‑Day Vulnerability Actively Exploited in iOS Software

Cisco Warns of Zero‑Day Vulnerability Actively Exploited in iOS Software Cisco has alerted users about a zero-day vulnerability (CVE‑2025‑20352) in its IOS and IOS XE software, which attackers are actively exploiting. What’s the issue? The flaw lies in the SNMP subsystem (Simple Network Management Protocol) and can be triggered via crafted SNMP packets. It’s a stack overflow bug. Severity score: 7.7 / 10 (High) If exploited: Low‑privilege attackers might trigger a Denial of Service (DoS). High‑privilege attackers (with administrative rights) could execute arbitrary code as root, fully compromising the device. Exploitation requires valid SNMP credentials (v1/v2c read-only or SNMPv3 + admin privileges). The vulnerability affects all devices running vulnerable IOS / IOS XE versions, including Meraki MS390 and Cisco Catalyst 9300 switches running Meraki CS 17. Mitigation & Patch Cisco has released a patch. Users are strongly urged to apply it immediately, as active exploitation is already occurring. There is no known full workaround. Cisco recommends using temporary mitigations: Restrict SNMP access (limit which IPs/networks can query). Use strong SNMPv3 credentials. Monitor logs for suspicious SNMP activity. Source: https://www.techradar.com/pro/security/cisco-warns-zero-day-vulnerability-exploited-in-attacks-on-ios-software ...

October 2, 2025 · 1 min · TechLife