Credit to Author: Matt Burgess| Date: Wed, 07 Sep 2022 18:45:36 +0000
With iOS 16 and macOS Ventura, Apple is introducing passkeys—a more convenient and secure alternative to passwords.
Read more
Credit to Author: Susan Bradley| Date: Tue, 06 Sep 2022 04:08:00 -0700
Every month, Windows users and administrators receive updates from Microsoft on Patch Tuesday (or Wednesday, depending on where you’re located). And each month, most users all apply the same updates.
But should we?
Case in point: KB5012170, a patch released on Aug. 9 that either causes no issues — or triggers Bitlocker recover key requests or won’t install at all, demanding that you go find a firmware update. This patch, called the Security update for Secure Boot DBX, applies to nearly all supported Windows releases. Specifically, it affects Windows Server 2012; Windows 8.1 and Windows Server 2012 R2; Windows 10, version 1507; Windows 10, version 1607 and Windows Server 2016; Windows 10, version 1809 and Windows Server 2019; Windows 10, versions 20H2, 21H1, and 21H2; Windows Server 2022; Windows 11, version 21H2 (original release), and Azure Stack HCI, version 1809, all the way to Azure Stack Data Box, version 1809 (ASDB).
Credit to Author: Lily Hay Newman| Date: Tue, 06 Sep 2022 11:00:00 +0000
US lawmakers keep warning about the popular app. But until they can explain what makes it uniquely dangerous, it’s difficult to tailor a resolution.
Read more
Credit to Author: Lily Hay Newman| Date: Sat, 03 Sep 2022 13:00:00 +0000
Plus: An unsecured database exposed face recognition data in China, ‘Cuba’ ransomware knocks out Montenegro, and more.
Read more
Credit to Author: Dan Goodin, Ars Technica| Date: Fri, 02 Sep 2022 13:00:00 +0000
Microsoft disclosed the flaw in the Android app’s deep link verification process, which has since been fixed.
Read more
Credit to Author: Matt Burgess| Date: Fri, 02 Sep 2022 11:00:00 +0000
Hackers can use Microsoft’s Power Automate to push out ransomware and key loggers—if they get machine access first.
Read more
Credit to Author: Jonny Evans| Date: Fri, 02 Sep 2022 04:55:00 -0700
When Craig Federighi, Apple’s senior vice president of software engineering last year said, “We have a level of malware on the Mac that we don’t find acceptable,” he apparently really meant it. And Apple seems to be doing about something about it.
Federighi characterized Apple as being in an enduring battle against malware on the Mac. He also explained that between May 2020 and May 2021 the company identified 130 types of Mac malware that infected 300,000 systems.
Given the Mac’s reputation for security, that may seem counter intuitive, but maintaining a secure platform requires constant watchfulness.
Credit to Author: Lucas Mearian| Date: Thu, 01 Sep 2022 16:46:00 -0700
Apple this week released urgent security updates to address zero-day vulnerabilities on older model iPhones, iPads, and iPods.
The patches, pushed out on Wednesday, address an out-of-bounds write issue that could be exploited by an attacker enabling them to take control of the affected device. The US Cybersecurity and Infrastructure Agency (CISA) today encouraged users and IT admins to review Apple’s advisory HT213428 and apply the necessary updates.
Credit to Author: Pia Ceres| Date: Thu, 01 Sep 2022 11:00:00 +0000
The California Age-Appropriate Design Code would launch a huge online privacy experiment. And it won’t just affect children.
Read more
Credit to Author: Lily Hay Newman| Date: Thu, 01 Sep 2022 10:00:00 +0000
Researchers found that mobile applications contain keys that could provide access to both user information and private files from unconnected apps.
Read more