Security News Update for March 5, 2023
This week’s news includes:
- BlackLotus bootkit can infect fully patched Windows 11 systems
- Microsoft announces release of Windows 11 Moments 2
- GitHub announces ‘secrets’ scanning feature now available for all public repositories
- Microsoft releases confusing set of Windows patches for Intel CPU flaws
- Understanding the Consumer Review Fairness Act of 2016
- CISA shares key findings to improve monitoring and hardening of networks
- Dish Network has … some kind of IT something
- Beeline, the ‘contingent workforce’ management company hacked, data leaked
- WSJ parent outfoxed by intruders for years
- Vendor of European hotel chain left ElasticSearch database unprotected: did not respond to emails
- So you think you are saving money by letting people use personally owned computers
- 48% of code bases examined contained high-risk vulnerabilities
- Feds release National Cybersecurity Strategy
- News bites for this week: hackers claim they breached T-Mobile more than 100 times in 2022, Google accused of destroying evidence after promising to stop, Ford seeks patent on tech to disable your car if you miss a payment, Russia bans Telegram and other chat apps and wiper malware goes global, so does its destruction.