Credit to Author: Danny Bradbury| Date: Mon, 09 Sep 2019 10:09:52 +0000
If you’re worried about the evil potential of deepfake video, you’re not alone; so is Facebook.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/M4dTDNkzUsk” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Woody Leonhard| Date: Fri, 06 Sep 2019 08:16:00 -0700
August brought loads of drama to the Windows and Office patching scene. Microsoft’s first round of patches killed Visual Basic, Visual Basic for Applications and VBScript in certain situations — on all versions of Windows. Fixes for the bugs dribbled out three, four, six and 17 days after the original infection.
Those Microsoft-introduced bugs were all the more daunting because the August patches are the ones intended to protect us from DejaBlue — the recently announced “wormable” malware infection vector that (thankfully!) has yet to be exploited. The mainstream press picked up the Chicken Little cry to install August patches right away. Then the buggy offal hit the impeller, and the press fell silent.
Credit to Author: Woody Leonhard| Date: Fri, 30 Aug 2019 10:27:00 -0700
What happens when Microsoft releases eight – count ‘em, eight – concurrent beta test versions of Win10 version 1909 without fixing bugs introduced into 1903 on Patch Tuesday?
Pan. De. Moaaan. Ium.
No doubt, you recall the first wave of pain inflicted by the August 2019 patching regimen. Microsoft somehow managed to mess up Visual Basic (an old custom programming language), Visual Basic for Applications (for Office macros) and VBScript (a largely forgotten language primarily used inside Internet Explorer). Folks running applications in any of those languages would, on occasion, receive “invalid procedure call error” messages when using apps that had been working for decades.
Credit to Author: Lisa Vaas| Date: Fri, 30 Aug 2019 10:35:34 +0000
Apple is turning off automatic review of Siri audio and locking it down so that only Apple employees get to listen to it.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/YC7GTRUdtR8″ height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Lisa Vaas| Date: Thu, 29 Aug 2019 10:52:13 +0000
EU data watchdogs are yet again sniffing at Windows 10.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/0qhmDvOnAaI” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Woody Leonhard| Date: Wed, 28 Aug 2019 06:07:00 -0700
If you’re using Symantec Endpoint Protection or any Norton Antivirus product on a Windows 7 or Server 2008 R2 machine, you didn’t get the August patches. Shortly after the August Monthly Rollup and Security-only patches were released, Microsoft put a freeze on systems running Symantec or Norton antivirus products.
The conflict stemmed from a long-anticipated change in the way Microsoft signed the August patches: Starting in August, all patches are signed using the SHA-2 encryption method. Somehow, Symantec didn’t get the message back in November that the shift was underway, and missed the deadline.
Credit to Author: p1| Date: Wed, 10 Jun 2015 16:22:25 +0000
BKFLODEC.RVW 20150609 “The Florentine Deception”, Carey Nachenberg, 2015, 978-1-5040-0924-9, U$13.49/C$18.91 %A Carey Nachenberg http://florentinedeception.com %C 345 Hudson Street, New York, NY 10014 %D 2015 %G 978-1-5040-0924-9 150400924X %I Open Road Distribution %O U$13.49/C$18.91 www.openroadmedia.com %O http://www.amazon.com/exec/obidos/ASIN/150400924X/robsladesinterne http://www.amazon.co.uk/exec/obidos/ASIN/150400924X/robsladesinte-21 %O http://www.amazon.ca/exec/obidos/ASIN/150400924X/robsladesin03-20 %O Audience n+ Tech 3 Writing 2 (see revfaq.htm for explanation) %P 321 p. %T “The … Continue reading REVIEW – “The Florentine Deception”, Carey Nachenberg
Read more
Credit to Author: BrianKrebs| Date: Wed, 21 Aug 2019 11:58:53 +0000
Almost weekly now I hear from an indignant reader who suspects a data breach at a Web site they frequent that has just asked the reader to reset their password. Further investigation almost invariably reveals that the password reset demand was not the result of a breach but rather the site’s efforts to identify customers who are reusing passwords from other sites that have already been hacked. But ironically, many companies taking these proactive steps soon discover that their explanation as to why they’re doing it can get misinterpreted as more evidence of lax security. This post attempts to unravel what’s going on here.
Read more
Credit to Author: Danny Bradbury| Date: Tue, 27 Aug 2019 10:33:09 +0000
GitHub is the latest company to support WebAuthn, a new standard that makes logging into online services using a browser more secure.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/pL1_CDzIPLA” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Gregg Keizer| Date: Mon, 26 Aug 2019 03:00:00 -0700
Microsoft is giving away one year of post-retirement support for Windows 7 to customers with active Windows 10 subscriptions.
“Enterprise Agreement and Enterprise Agreement Subscription (EA and EAS) customers with active subscription licenses to Windows 10 Enterprise E5, Microsoft 365 E5, or Microsoft 365 E5 Security will get Windows 7 Extended Security Updates for Year 1 as a benefit,” Microsoft said in a FAQ about the end of support for Windows 7 and Office 2010.
Windows 10 Enterprise E5 and Microsoft 365 E5 are the top-tier subscriptions of the OS or packages that include the operating system. They are the highest-priced plans in their specific lines.