Independent – Page 51 – PossibleThreat Articles

Windows 11 2022 Update is the version enterprises can move to

September 20, 2022 0 Comments Microsoft, Microsoft Office, remote work, Security, Windows 10, windows 11

Microsoft today announced the rollout of the first major feature upgrade to Windows 11. Many of the changes are incremental and focus on user interface and productivity enhancements, but there are some useful additions — including a new password security feature.

Mostly, Windows 11 version 22H2, known as the Windows 11 2022 Update, is about polishing up the user experience introduced with Windows 11, while rounding out the feature set with some additional enterprise-targeted capabilities, according to Stephen Kleynhans, a vice president analyst at research firm Gartner.

To read this article in full, please click here

ComputerWorld Independent

Critical zero-days make September's Patch Tuesday a 'Patch Now' release

September 16, 2022 0 Comments Microsoft, Security, small and medium business, Windows

With 63 updates affecting Windows, Microsoft Office and the Visual Studio and .NET platforms — and reports of three publicly exploited vulnerabilities (CVE-2022-37969, CVE-2022-34713, CVE-2021-40444) — this month’s Patch Tuesday release gets a “Patch Now” priority. Key testing areas include printing, Microsoft Word, and in general application un-installations. (The Microsoft Office, .NET and browser updates can be added to your standard release schedules.)

To read this article in full, please click here

Independent Krebs Security

Botched Crypto Mugging Lands Three U.K. Men in Jail

September 16, 2022 0 Comments brickings, disco dog, discoli, joseph james o'connor, leonardo sapiano, Ne'er-Do-Well News, patrick mcgovern-allen, plugwalkjoe, rayhan miah, robert lewis barr, SIM swapping, SWATting, The Coming Storm, thomas green, violence-as-a-service

Credit to Author: BrianKrebs| Date: Fri, 16 Sep 2022 17:55:25 +0000

Three men in the United Kingdom were arrested this month after police responding to an attempted break-in at a residence stopped their car as they fled the scene. The authorities found weapons and a police uniform in the trunk, and say the trio intended to assault a local man and force him to hand over virtual currencies.

ComputerWorld Independent

Sadly, IT can no longer trust geolocation for much of anything

September 16, 2022 0 Comments Android, iOS, Mobile, mobile apps, Security, small and medium business

Credit to Author: eschuman@thecontentfirm.com| Date: Fri, 16 Sep 2022 03:00:00 -0700

Geolocation was once a glorious way to know who your company is dealing with (and sometimes what they are doing). Then VPNs started to undermine that. And now, things have gotten so bad that the Apple App Store and Google Play both offer apps that unashamedly declare they can spoof locations — and neither mobile OS vendor does anything to stop it.

Why? It seems both Apple and Google created the holes these developers are using.

In a nutshell, Apple and Google — to test their apps across various geographies — needed to be able to trick the system into thinking that their developers are wherever they wanted to say that they are. What’s good for the mobile goose, as they say.

To read this article in full, please click here

Independent Krebs Security

Say Hello to Crazy Thin ‘Deep Insert’ ATM Skimmers

September 14, 2022 0 Comments All About Skimmers, deep insert skimmers, ncr, ncr selfserv

Credit to Author: BrianKrebs| Date: Wed, 14 Sep 2022 21:46:58 +0000

A number of financial institutions in and around New York City are dealing with a rash of super-thin “deep insert” card skimming devices designed to fit inside the mouth of an ATM’s card acceptance slot. The card skimmers are paired with tiny pinhole cameras that are cleverly disguised as part of the cash machine. Here’s a look at some of the more sophisticated deep insert skimmer technology that fraud investigators have recently found in the wild.

Independent Krebs Security

Wormable Flaw, 0days Lead Sept. 2022 Patch Tuesday

September 13, 2022 0 Comments asheer malhotra, Cisco Talos, dustin childs, ios 16, jon munshaw, kevin breen, lily hay newman, lockdown mode, microsoft patch tuesday september 2022, pangu lab, safety check, satnam narang, security tools, Time to Patch, trend micro, xinru chi

Credit to Author: BrianKrebs| Date: Wed, 14 Sep 2022 00:23:45 +0000

This month’s Patch Tuesday offers a little something for everyone, including security updates for a zero-day flaw in Microsoft Windows that is under active attack, and another Windows weakness experts say could be used to power a fast-spreading computer worm. Also, Apple has also quashed a pair of zero-day bugs affecting certain macOS and iOS users, and released iOS 16, which includes a nifty new privacy and security feature called “Lockdown Mode.” And Adobe axed 63 vulnerabilities in a range of products.

Independent Krebs Security

Transacting in Person with Strangers from the Internet

September 9, 2022 0 Comments internet purchase & exchange location, safeexchangepoint.com, safetradeoptions.com, security tools

Credit to Author: BrianKrebs| Date: Fri, 09 Sep 2022 12:40:03 +0000

Communities like Craigslist, OfferUp, Facebook Marketplace and others are great for finding low- or no-cost stuff that one can pick up directly from a nearby seller, and for getting rid of useful things that don’t deserve to end up in a landfill. But when dealing with strangers from the Internet, there is always a risk that the person you’ve agreed to meet has other intentions.

ComputerWorld Independent

When Windows updating goes bad — the case of the problematic patch

September 6, 2022 0 Comments Security, small and medium business, Windows, Windows 10, windows 11

Credit to Author: Susan Bradley| Date: Tue, 06 Sep 2022 04:08:00 -0700

Every month, Windows users and administrators receive updates from Microsoft on Patch Tuesday (or Wednesday, depending on where you’re located). And each month, most users all apply the same updates.

But should we?

Case in point: KB5012170, a patch released on Aug. 9 that either causes no issues — or triggers Bitlocker recover key requests or won’t install at all, demanding that you go find a firmware update. This patch, called the Security update for Secure Boot DBX, applies to nearly all supported Windows releases. Specifically, it affects Windows Server 2012; Windows 8.1 and Windows Server 2012 R2; Windows 10, version 1507; Windows 10, version 1607 and Windows Server 2016; Windows 10, version 1809 and Windows Server 2019; Windows 10, versions 20H2, 21H1, and 21H2; Windows Server 2022; Windows 11, version 21H2 (original release), and Azure Stack HCI, version 1809, all the way to Azure Stack Data Box, version 1809 (ASDB).

To read this article in full, please click here

Independent Krebs Security

Violence-as-a-Service: Brickings, Firebombings & Shootings for Hire

September 4, 2022 0 Comments A Little Sunshine, bricking, firebombing, molotov cocktail, Ne'er-Do-Well News, patrick mcgovern-allen, SIM swapping, SWATting, tongue, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Sun, 04 Sep 2022 14:59:13 +0000

A 21-year-old New Jersey man has been arrested and charged with stalking in connection with a federal investigation into groups of cybercriminals who are settling scores by hiring people to carry out physical attacks on their rivals. Prosecutors say the defendant recently participated in several of these schemes — including firing a handgun into a Pennsylvania home and torching a residence in another part of the state with a Molotov Cocktail.

ComputerWorld Independent

Apple wasn’t fooling when it said it wanted to make Macs more secure

September 2, 2022 0 Comments Apple, MacOS, Mobile, Security, small and medium business

Credit to Author: Jonny Evans| Date: Fri, 02 Sep 2022 04:55:00 -0700

When Craig Federighi, Apple’s senior vice president of software engineering last year said, “We have a level of malware on the Mac that we don’t find acceptable,” he apparently really meant it. And Apple seems to be doing about something about it.

Apple is giant taking steps to secure the Mac

Federighi characterized Apple as being in an enduring battle against malware on the Mac. He also explained that between May 2020 and May 2021 the company identified 130 types of Mac malware that infected 300,000 systems.

Given the Mac’s reputation for security, that may seem counter intuitive, but maintaining a secure platform requires constant watchfulness.

To read this article in full, please click here