Credit to Author: Lisa Vaas| Date: Tue, 14 Jan 2020 10:51:15 +0000
A former contractor in Beijing: “It sounds a bit crazy now […] that they gave me the URL, a username and password sent over email.”<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/MmxOcairoTY” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: BrianKrebs| Date: Mon, 13 Jan 2020 22:17:47 +0000
Sources tell KrebsOnSecurity that Microsoft Corp. is slated to release a software update on Tuesday to fix an extraordinarily serious security vulnerability in a core cryptographic component present in all versions of Windows. Those sources say Microsoft has quietly shipped a patch for the bug to branches of the U.S. military and to other high-value customers/targets that manage key Internet infrastructure, and that those organizations have been asked to sign agreements preventing them from disclosing details of the flaw prior to Jan. 14, the first Patch Tuesday of 2020.
Read more
Credit to Author: John E Dunn| Date: Tue, 07 Jan 2020 12:35:29 +0000
US cable and wire manufacturer, Southwire, last week filed a civil suit against Maze’s mysterious makers in Georgia Federal court.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/jNMBVgsS2Wg” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Gregg Keizer| Date: Tue, 07 Jan 2020 04:53:00 -0800
A week from now, Microsoft will serve customers with the last for-free Windows 7 security update, in effect retiring the 2009 operating system.
However, hundreds of millions of personal computers will still power up thanks to Windows 7 on Jan. 14, and for an indeterminate timespan after that date. Windows 7 may be retiring, but it’s not disappearing.
Microsoft admitted as much more than a year ago when it announced Extended Security Updates (ESU), a program for commercial customers who needed more time to ditch Windows 7. ESU would provide patches for some security vulnerabilities for as long as three years. For a fee.
(Insider Story)
Read more
Credit to Author: Woody Leonhard| Date: Mon, 06 Jan 2020 09:55:00 -0800
It was the kind of month admins dread: Mysterious problems on hundreds of machines, with no apparent cause or cure. Toss in the holidays, and we had a whole lot of Mr. and Ms. Grinches in the industry.
Fortunately, it looks like the problems have been sorted out at this point. Individual users had many fewer problems. Microsoft’s left and right hands still aren’t talking on the 1909 team, but what else is new…
Microsoft dropped a new Servicing Stack Update for Windows 7 on Dec. 10, and it gummed up the works for many. Here’s a good summary on Reddit from poster Djaesthetic:
Credit to Author: Sanjay Mehta| Date: Fri, 03 Jan 2020 14:45:42 +0000
Effective collaboration is key to the success of any organization. But perhaps none more so than those working towards the common goal of securing our connected world. That’s why Trend Micro has always been keen to reach out to industry partners in the security ecosystem, to help us collectively build a safer world and improve…
The post Celebrating Decades of Success with Microsoft at the Security 20/20 Awards appeared first on .
Read more
Credit to Author: Danny Bradbury| Date: Fri, 20 Dec 2019 10:52:40 +0000
Reports surfaced this week that the president of Russia is still using Windows XP as his primary operating system.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/qLEmcJPcH-g” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Woody Leonhard| Date: Wed, 18 Dec 2019 05:57:00 -0800
Late last week, I talked about a discrepancy in Microsoft’s promised handling of Microsoft Security Essentials as Windows 7 reaches end of support. An internally inconsistent official announcement seemed to say that MSE signature file updates would stop — even for those who have paid for Extended Security Updates.
Which is absurd. Why would Microsoft stop updating its antivirus program even for people who are paying to continue receiving Monthly Rollup patches?
Credit to Author: Woody Leonhard| Date: Fri, 13 Dec 2019 06:52:00 -0800
You know that businesses will be able to pay for Win7 security patches after Win7 hits end-of-life on Jan. 14. Many of Microsoft’s Extended Security Update program details aren’t clear to me — How does a very small business buy ESU? Why is Microsoft releasing Edge on Win7 the day after it goes end-of-life? Will that new full-screen nag keep coming back? — but there’s one loose end that sits in the middle of my confusion.
Credit to Author: John E Dunn| Date: Thu, 12 Dec 2019 10:42:32 +0000
December 2019’s Patch Tuesday updates are, including a fix for the Windows flaw used in recently discovered WizardOpium attacks.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/PoQEqUB0h3I” height=”1″ width=”1″ alt=””/>
Read more