This week’s security news includes: Epic Intel Chip Bug meet SQUIP AMD chip bug Update on UEFI secure boot bypass bug – much bigger than thought iOS 16 Lockdown Mode Microsoft fixes some EUFI bootloader vulnerabilities Apple patches fifth zero-day so far this year Chrome keeps up with Apple – also patches fifth zero-day of…
This week’s security news includes: Epic Intel chip bug Google suffers global outage of some services after data center explosion Microsoft patches Windows Diagnostics plus several zero days Crypto mixer Tornado Cash sent to the showers If you plan to hack big, you should be in a country without extradition This was an education for…
This week’s security news includes: New DRX Safeguards Rule goes into effect in less than 6 months One NIST post-quantum encryption candidate cracked on a single PC Slack forces password reset NIST revises compliance guide for HIPAA security rule VMWare urges customers to patch authentication bypass bug FDIC issues advisory on insurance and crypto Opendoor…
This week’s security news includes: Jury delivers $7 billion verdict against Charter Cable due to bad security practices Spanish radiation sensor hack was an inside job Microsoft resumes blocking VBA macros Patent trolls beware Uber settles with feds over lying about 2016 breach Digital exhaust opt out guide version 3 T-Mobile will pay $350 million…
This week’s security news includes: Did Russian hackers blow up a Texas gas pipeline? Okta may expose passwords unencrypted as part of a device to device sync Sonicwall releases emergency SQL injection patch CISA says patch actively exploited Windows 11 bug Oracle releases 349 patches this week, including 230 RCE bugs Apple ships urgent security…
This week’s security news includes: Can your firewall and/or endpoint protection software see into encrypted traffic Windows 8.1 now shows full-screen end of support Honda tries to downplay hacker remote unlock/start on some 2022 cars Google releases emergency Chrome 103 update for actively exploited vulnerability Joshua Schulte: guilty on all charges FCC looks to raise…
This week’s security news includes: Microsoft rolls back Office macro block A different type of privacy risk Apple lockdown mode Google releases emergency Chrome 103 update for actively exploited vulnerability TikTok/ByteDance dances around user data privacy FBI educational tri-folds Russian space research institute hacked Unemployment and labor websites down in up to 40 states due…
This week’s security news includes: Open SSL Version 3 is possibly a bit too open NIST releases automated secure configuration guidance for macOS Researchers disclose 56 vulnerabilities in industrial control software Feds fine E-Y $100 million for falsifying audits, cheating China puts Walmart in the naughty box because of their security weaknesses If you have…
This week’s security news includes: The ghost of Internet Explorer continues to haunt us Researchers disclose 15 bugs in Siemens Industrial Control software CISA releases version 2 of Cloud Security Technical Reference Architecture document Windows 11 is getting an app privacy report feature Multiple backdoored Python libraries caught stealing AWS secrets and keys Jury convicts…
This week’s security news includes: Hackers clone mobile crypto wallets California issues draft CPRA regs Open source desktop software CISA says update your Chrome browser Microsoft June update affects AAD login on ARM devices The stupidity of Bitcoin as a national currency House panel approves $3.4B of rip & replace funding Interpol nabs $50 million…
