Magna Seating plans $100 million plant to serve GM in suburban Detroit

<p>New plant stems from new business from GM; the jobs will be UAW-represented.</p>

https://www.autonews.com/automakers-supp...ar-detroit

Spyware Vendors Caught Exploiting Zero-Day Vulnerabilities on Android and iOS Devices

A number of zero-day vulnerabilities that were addressed last year were exploited by commercial spyware vendors to target Android and iOS devices, Google's Threat Analysis Group (TAG) has revealed.
The two distinct campaigns were both limited and highly targeted, taking advantage of the patch gap between the release of a fix and when it was actually deployed on the targeted devices. The scale of

https://thehackernews.com/2023/03/spywar...-zero.html

3CX Desktop App Supply Chain Attack Leaves Millions at Risk - Urgent Update on the W

3CX said it's working on a software update for its desktop app after multiple cybersecurity vendors sounded the alarm on what appears to be an active supply chain attack that's using digitally signed and rigged installers of the popular voice and video conferencing software to target downstream customers.
"The trojanized 3CX desktop app is the first stage in a multi-stage attack chain that pulls

https://thehackernews.com/2023/03/3cx-de...upply.html

AlienFox Malware Targets API Keys and Secrets from AWS, Google, and Microsoft Cloud

A new "comprehensive toolset" called AlienFox is being distributed on Telegram as a way for threat actors to harvest credentials from API keys and secrets from popular cloud service providers.
"The spread of AlienFox represents an unreported trend towards attacking more minimal cloud services, unsuitable for crypto mining, in order to enable and expand subsequent campaigns," SentinelOne security

https://thehackernews.com/2023/03/alienf...s-and.html

Cyberstorage: Leveraging the Multi-Cloud to Combat Data Exfiltration

Multi-cloud data storage, once merely a byproduct of the great cloud migration, has now become a strategy for data management. "Multi-cloud by design," and its companion the supercloud, is an ecosystem in which several cloud systems work together to provide many organizational benefits, including increased scale and overall resiliency.And now, even security teams who have long been the holdout

https://thehackernews.com/2023/03/cybers...ud-to.html

New Wi-Fi Protocol Security Flaw Affecting Linux, Android and iOS Devices

A group of academics from Northeastern University and KU Leuven has disclosed a fundamental design flaw in the IEEE 802.11 Wi-Fi protocol standard, impacting a wide range of devices running Linux, FreeBSD, Android, and iOS.
Successful exploitation of the shortcoming could be abused to hijack TCP connections or intercept client and web traffic, researchers Domien Schepers, Aanjhan Ranganathan,

https://thehackernews.com/2023/03/new-wi...-flaw.html

Chinese RedGolf Group Targeting Windows and Linux Systems with KEYPLUG Backdoor

A Chinese state-sponsored threat activity group tracked as RedGolf has been attributed to the use of a custom Windows and Linux backdoor called KEYPLUG.
"RedGolf is a particularly prolific Chinese state-sponsored threat actor group that has likely been active for many years against a wide range of industries globally," Recorded Future told The Hacker News.
"The group has shown the ability to

https://thehackernews.com/2023/03/chines...ndows.html

Researchers Detail Severe "Super FabriXss" Vulnerability in Microsoft Azure SFX

Details have emerged about a now-patched vulnerability in Azure Service Fabric Explorer (SFX) that could lead to unauthenticated remote code execution.
Tracked as CVE-2023-23383 (CVSS score: 8.2), the issue has been dubbed "Super FabriXss" by Orca Security, a nod to the FabriXss flaw (CVE-2022-35829, CVSS score: 6.2) that was fixed by Microsoft in October 2022.
"The Super FabriXss vulnerability

https://thehackernews.com/2023/03/resear...super.html

PT Vale Indonesia and Huayou Sign Nickel Agreement with Ford Motor Co. Supporting Gr

PT Vale Indonesia Tbk and China’s Zhejiang Huayou Cobalt Co. today announced an agreement with global automaker Ford Motor Co., creating a three-party collaboration to advance more sustainable nickel production in Indonesia and help make electric vehicle batteries more affordable.


https://media.ford.com/content/fordmedia...d-mot.html

Ford Announces $1 Million Scholarship Program to Support Students Pursuing Careers a

Ford Motor Company Fund, the company’s philanthropic arm, is joining Ford dealers across four U.S. regions – Atlanta, Chicago, Dallas, and Phoenix – to provide $1 million in scholarship funding to help students pursue careers as automotive technicians.


https://media.ford.com/content/fordmedia...udent.html