This week’s security news includes: Yet another spyware gets caught in the act Hackers are hiding malware in James Webb telescope images New background check restrictions in 2022 Duck, Duck, Go expands beta of private email to everyone WordPress 6.0.2 Apple backports patch to older devices 2023 NDAA bill bans feds from buying insecure software…
This week’s security news includes: Google fends off 46 million packet per second denial of service attack Early draft of California privacy regulations The O.MG USB cable Federal privacy legislation Oracle sued over privacy violations Colorado’s Mesa County election deputy pleads guilty to tampering, agrees to testify against her boss, Tina Peters North Korea hackers…
This week’s security news includes: Epic Intel Chip Bug meet SQUIP AMD chip bug Update on UEFI secure boot bypass bug – much bigger than thought iOS 16 Lockdown Mode Microsoft fixes some EUFI bootloader vulnerabilities Apple patches fifth zero-day so far this year Chrome keeps up with Apple – also patches fifth zero-day of…
This week’s security news includes: Epic Intel chip bug Google suffers global outage of some services after data center explosion Microsoft patches Windows Diagnostics plus several zero days Crypto mixer Tornado Cash sent to the showers If you plan to hack big, you should be in a country without extradition This was an education for…
This week’s security news includes: New DRX Safeguards Rule goes into effect in less than 6 months One NIST post-quantum encryption candidate cracked on a single PC Slack forces password reset NIST revises compliance guide for HIPAA security rule VMWare urges customers to patch authentication bypass bug FDIC issues advisory on insurance and crypto Opendoor…
This week’s security news includes: Jury delivers $7 billion verdict against Charter Cable due to bad security practices Spanish radiation sensor hack was an inside job Microsoft resumes blocking VBA macros Patent trolls beware Uber settles with feds over lying about 2016 breach Digital exhaust opt out guide version 3 T-Mobile will pay $350 million…
This week’s security news includes: Did Russian hackers blow up a Texas gas pipeline? Okta may expose passwords unencrypted as part of a device to device sync Sonicwall releases emergency SQL injection patch CISA says patch actively exploited Windows 11 bug Oracle releases 349 patches this week, including 230 RCE bugs Apple ships urgent security…
This week’s security news includes: Can your firewall and/or endpoint protection software see into encrypted traffic Windows 8.1 now shows full-screen end of support Honda tries to downplay hacker remote unlock/start on some 2022 cars Google releases emergency Chrome 103 update for actively exploited vulnerability Joshua Schulte: guilty on all charges FCC looks to raise…
This week’s security news includes: Microsoft rolls back Office macro block A different type of privacy risk Apple lockdown mode Google releases emergency Chrome 103 update for actively exploited vulnerability TikTok/ByteDance dances around user data privacy FBI educational tri-folds Russian space research institute hacked Unemployment and labor websites down in up to 40 states due…
This week’s security news includes: Open SSL Version 3 is possibly a bit too open NIST releases automated secure configuration guidance for macOS Researchers disclose 56 vulnerabilities in industrial control software Feds fine E-Y $100 million for falsifying audits, cheating China puts Walmart in the naughty box because of their security weaknesses If you have…
