The websites of some German airports, financial institutions, and government agencies were targeted with distributed denial-of-service (DDoS) attacks earlier this week. The attacks are believed to be the work of Russian hacktivists. Germany’s Federal office for Information Security (BSI) says that some websites were made unavailable, but there were no service disruptions. Note DDoS attacks …
Microsoft says that network configuration issues were responsible for an outage on Wednesday, January 25, that affected multiple Microsoft 365 services, including Microsoft Teams, Exchange Online, Outlook, SharePoint Online, OneDrive for Business, Microsoft Graph, PowerBi, M365 Admin Portal, Microsoft Intune, Microsoft Defender for Cloud Apps, and Microsoft Defender for Identity. Microsoft said the issues were …
The US Cybersecurity and Infrastructure Security Agency (CISA) has released a report and a toolkit to help K-12 schools better protect their systems from cybersecurity threats. The report makes three recommendations: investing in most impactful security measures and building toward a mature cybersecurity plan; recognizing and actively address resource constraints; and focusing on collaboration and …
An international law enforcement effort has disrupted the infrastructure of the Hive ransomware group. Authorities have seized US-based servers and have shut down two of the group’s data leak sites. The takedown effort was aided by FBI agents who infiltrated the Hive network and maintained a presence on their servers for seven months. Note The …
Google has updated the Stable channel for Chrome to version to 109.0.5414.119 for Mac and Linux and 109.0.5414.119/.120 for Windows. The newest version of the browser includes fixes for six vulnerabilities. Four of the flaws were submitted by external researchers. These include use after free vulnerabilities in WebTransport, WebRTC, and GuestView, and a type confusion …
Researchers from Akamai say that most Windows data centers have not patched systems against a critical spoofing vulnerability in CryptoAPI. The US National Security Agency (NSA) and the UK National Cybersecurity Centre (NCSC) disclosed the vulnerability to Microsoft and the issue was patched in August 2022. In the update guide for the vulnerability (CVE-2022-34689), Microsoft …
The US National Institute of Standards and technology (NIXTY) has released the first version of its risk management framework for artificial intelligence (AI). The guidance will be voluntary. Artificial Intelligence Risk Management Framework (AI RMF 1.0) has been created to be useful to organizations of all sizes and in all sectors. NIST will accept comments …
In a joint cybersecurity advisory, the Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Multi-State Information Sharing and Analysis Center (MS-ISAC) warn that threat actors used legitimate remote monitoring and management software to gain access to the networks of multiple federal civilian executive branch agencies. The advisory includes technical details, indicators of …
Starting in March, Microsoft will block XLL files coming from the Internet in Office Excel. In its Microsoft 365 roadmap, Microsoft writes that it is making this change “to combat the increasing number of malware attacks in recent months.” Note Nice to see Microsoft continuing its quest to block common malware delivery methods. XLL files …
VMware has released updates to fix four vulnerabilities in its vRealize Log Insight product. Two of the flaws are critical: a directory traversal vulnerability and a broken access control vulnerability. Both could be exploited to achieve remote code execution. The other fixed flaws are a deserialization vulnerability that could be exploited to create denial of …
Question When it comes to improving your website’s search engine optimization, one of the most important strategies to consider is obtaining high-quality backlinks without cost. This can be a daunting task, but with some careful planning and research, it is possible to achieve. If you’re looking for ways to obtain high-quality backlinks without spending money, …
Question The Information Technology industry is a rapidly evolving space, and it is essential for professionals to stay up to date with the latest trends in order to remain competitive. The Information Technology industry is ever-evolving, and so are the skills and technologies that are in high demand. In the current Information Technology (IT) industry, …
Good task management across your life is a nirvana that app makers the world over have tried to solve; you need it to be efficient, effective, and successful in today’s working world. There’s a reason there are thousands of results among the Google Play and Apple App stores for task apps. Microsoft is no different. …
Discover how a modern customer Identity solution empowers organisations to scale revenue fast, strengthen security, build customer trust, and drive digital businesses forward.
Modern Intel and Arm CPUs expose cryptographic data to timing attacks, Eric Biggers, a software engineer at Google on the Platform Encryption Team, has highlighted in a series of discussions on mailing lists for the past months. Timing attacks against cryptography algorithms were discovered in the mid-90s and were proven practically at the start of …
Crypto is generally perceived as a risky investment, and while there is some truth to that, no one can ignore the utility of digital assets. Bitcoin and other similar cryptocurrencies were created with a purpose in mind; thus, they have different real-world applications. If you’re wondering what you can do with digital currencies, this article …
