This week’s news includes: CISA says Dataprobe’s PDUs used in critical infrastructure vulnerable Unpatched 15 year old Python bug allows code injection in 350,000 projects HP failed to patch firmware for a year Industrial control systems have joined the general computer world in their own patch Tuesday mess NSA and CISA release Control system defense:…
This week’s news includes: Not a great week for Uber – lying about an old breach, investigating a new breach Major WFH/WFA risk to businesses – employees viewing pirated contents CISA warns of water tank management system attack FBI warns of risks of using unpatched medical devices It’s 10 PM, do you know where your…
This week’s security news: Millions of Arris routers are vulnerable to attack Cloudflare dumps KiwiFarms Watchguard patches pre-authentication critical bug Court protects some vendor lists Cybersecurity radio KeyBank says hackers stole mortgage data – for a third party service provider IRS data breach exposes data on 120,000 LA Unified School District hit by cyberattack Mass…
This week’s security news includes: Yet another spyware gets caught in the act Hackers are hiding malware in James Webb telescope images New background check restrictions in 2022 Duck, Duck, Go expands beta of private email to everyone WordPress 6.0.2 Apple backports patch to older devices 2023 NDAA bill bans feds from buying insecure software…
This week’s security news includes: Google fends off 46 million packet per second denial of service attack Early draft of California privacy regulations The O.MG USB cable Federal privacy legislation Oracle sued over privacy violations Colorado’s Mesa County election deputy pleads guilty to tampering, agrees to testify against her boss, Tina Peters North Korea hackers…
This week’s security news includes: Epic Intel Chip Bug meet SQUIP AMD chip bug Update on UEFI secure boot bypass bug – much bigger than thought iOS 16 Lockdown Mode Microsoft fixes some EUFI bootloader vulnerabilities Apple patches fifth zero-day so far this year Chrome keeps up with Apple – also patches fifth zero-day of…
This week’s security news includes: Epic Intel chip bug Google suffers global outage of some services after data center explosion Microsoft patches Windows Diagnostics plus several zero days Crypto mixer Tornado Cash sent to the showers If you plan to hack big, you should be in a country without extradition This was an education for…
This week’s security news includes: New DRX Safeguards Rule goes into effect in less than 6 months One NIST post-quantum encryption candidate cracked on a single PC Slack forces password reset NIST revises compliance guide for HIPAA security rule VMWare urges customers to patch authentication bypass bug FDIC issues advisory on insurance and crypto Opendoor…
This week’s security news includes: Jury delivers $7 billion verdict against Charter Cable due to bad security practices Spanish radiation sensor hack was an inside job Microsoft resumes blocking VBA macros Patent trolls beware Uber settles with feds over lying about 2016 breach Digital exhaust opt out guide version 3 T-Mobile will pay $350 million…
This week’s security news includes: Did Russian hackers blow up a Texas gas pipeline? Okta may expose passwords unencrypted as part of a device to device sync Sonicwall releases emergency SQL injection patch CISA says patch actively exploited Windows 11 bug Oracle releases 349 patches this week, including 230 RCE bugs Apple ships urgent security…
