Items tagged with security
If you're still rocking Windows 10, don't panic, fee-based security updates are not imminent. However, they are coming once Windows 10 officially reaches End of Life (EOL) status, which barring any reprieves will happen on October 14, 2025. If by chance you're still running what will then be considered a legacy OS...
Read more...
Popular genetic testing company 23andMe has revealed the possible true impact of its recent October data breach. Contrary to an SEC (Securities and Exchange Commission) filing on Friday by the company, the breach is now said to affect 6.9 million individuals worldwide.
On Friday, 23andMe stated that only a small...
Read more...
If you're using a Chrome browser—and chances are high that you are, simply based on Chrome's dominant market share—stop what you're doing and initiate an update to the latest version. Yes, you should be receiving Chrome updates on an automatic basis, but the newest build patches a bunch of alarming security...
Read more...
Ikea has launched a new smart home product family called the Vallhorn, Parasoll, and Badring, which are “designed to give customers a greater sense of control and comfort, allowing them to stay connected to their homes, even when they are away.” Thankfully, these smart home products are inexpensive and don't require...
Read more...
A security vulnerability found in ownCloud, a provider of open-source software solutions for organizations to host and sync files, is now being actively exploited by threat actors. The vulnerability, CVE-2023-49103, was initially disclosed by ownCloud on November 21, 2023 whereupon it was assessed as being a critical...
Read more...
The developer of Ethyrial: Echoes of Yore, Gellyberry Studios, has been hit by a ransomware attack, leading to the loss of 17,000 player accounts, the studio announced on their Discord server. The game is described as “a hardcore old-school MMORPG for players not afraid of challenge, risk, and adventure. Band together...
Read more...
In less than 72 hours from now, Google will start deleting Google accounts that have been deemed inactive. If you want to save your content, there are some things you can do to ensure that your account and associated content is not caught in the snare of the accounts purge. However, the clock is ticking, so you best...
Read more...
The holiday season is upon us, which means a barrage of sales on services and products as people find themselves in the gift-giving mood. It's also a time for feasting, and not just on turkey and ham—like nasty little cockroaches and termites, scammers come out of the woodwork during the holiday season in hopes of...
Read more...
General Electric is primarily known for its spinning things, like washing machines, supersonic engines, or the GAU-8/A Avenger 30mm seven-barrel cannon mounted on the A-10 Warthog and CIWS weapon system. All goofs aside, GE is quite a broad company with connections in nearly every sector of the economy. Therefore, it...
Read more...
The Oakland Sherriff’s Office in Michigan is warning parents about the NameDrop feature of Apple’s iPhones. This feature is found on the smartphone maker’s latest iOS release, iOS 17. Apple says that “NameDrop allows users to easily share contact information by simply bringing their iPhones together, or by bringing an...
Read more...
A malware campaign originally targeting Microsoft Windows that began in July of this year is now taking aim at Apple’s macOS. Cybersecurity Researcher Ankit Anubhav shared on the Infosec Exchange instance on Mastodon that it got an update that will now push a DMG file payload when it detects an Apple user browsing...
Read more...
The Russian espionage machine is both vast and prolific, as shown by a recent Russian code outbreak making its way into U.S. government systems. With the war in Ukraine in full swing, this behemoth of a program is not only throwing tools and resources at Ukraine, but is also driving its efforts into other countries...
Read more...
Your phone number is about to get more secure, and you don't even have to do anything to make it happen. The Federal Communications Commission (FCC) has issued new directives for cell carriers that will force them to take SIM swapping and port-out attacks seriously. Carriers will now have to use secure authentication...
Read more...
You probably don't need an official list to tell you that "123456" is an incredibly weak password (unless you're a CEO, apparently), or that extending it out to "12345678" or even "123456789" are nearly as anemic when it comes to account security. Nevertheless, the folks at NordPass have published an annual list of...
Read more...
Ransomware gang BlackCat, otherwise known as ALPHV, is after the public spotlight following the Reddit data breach debacle earlier this year. Now, the group has breached another organization with MeridianLink and is causing a stir by filing a complaint with the Securities and Exchange Commission (SEC) to try and spur...
Read more...
Software vulnerabilities come and go, but vulnerabilities found in hardware are significantly harder to deal with and lead to more problems, such as with Hertzbleed and that family of security issues that sprung up from simple clock management techniques. Now, researchers have found a new problem with AMD EPYC...
Read more...
The Lockbit ransomware group has breached a number of high-profile organizations and companies, such as TSMC in Taiwan, which is effectively the global leader in silicon production. Most recently, though, the international aeronautic and telecommunications company Boeing seemingly fell victim to the group, and...
Read more...
The State of Maine is informing the public of the impact to the State’s computer systems due to a security vulnerability found in the MOVEit file transfer tool, a software suite developed by Progress Software. This incident took place between May 28, 2023 and May 29, 2023. During this time, cybercriminals were able to...
Read more...
Generative AI ChatGPT has seen exponential growth in the past few months, recently crossing the 100 million weekly active users. However, with all this popularity, a target was perhaps painted on the back of OpenAI and ChatGPT by threat actors looking to make a quick buck or cause mayhem. It seems the latter is what...
Read more...
Threat actors have gotten increasingly more creative with their methods, embedding them in devices while evading defensive blue teams along the way. The situation is akin to over-prescription of antibiotics, which could eventually lead to a superbug, but with criminal hackers devising creative and innovative ways to...
Read more...
Washington D.C.'s Mayor Muriel Bowser announced a new initiative involving Apple AirTags to combat a rise in car thefts in some neighborhoods. Free AirTags will be distributed to residents who live in areas where car thefts are on the rise in the coming months.
It is not often that a headline involving Apple's...
Read more...
In case you weren't aware, VMware operates a security arm called Carbon Black. On Halloween, Carbon Black's Threat Analysis Unit (TAU) announced that it had found 34 different vulnerable Windows drivers that had firmware access. To be clear, that's 34 unique filenames; the actual number of different driver files is...
Read more...
