Month: October 2024
Microsoft has released the optional KB5044380 Preview cumulative update for Windows 11 23H2 and 22H2, which brings seventeen changes, including a new Gamepad keyboard and the ability to remap the Copilot keyboard key. The KB5044380 cumulative update preview is part of Microsoft’s optional non-security preview updates schedule, released on the fourth week of every month. This…
Read MoreCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation, as confirmed by Fortinet. CVE-2024-47575 Fortinet FortiManager Missing Authentication Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. CISA encourages users and administrators to see Fortinet…
Read More
The WhatsApp messenger platform has introduced Identity Proof Linked Storage (IPLS), a new privacy-preserving encrypted storage system designed for contact management. The new system solves two long-standing problems WhatsApp users have been dealing with for years, namely the risk of losing their contact lists if they lose their phone and the inability to sync contacts…
Read More
Protecting your child’s online activity is crucial for their safety and well-being. Children are especially vulnerable to online risks because they may not have the maturity or experience to recognize and avoid danger. By taking steps to protect your child’s online activity, you can help them stay safe from harm and make the most of…
Read More
‘Reports have shown this vulnerability to be exploited in the wild,’ the security vendor says in an advisory Wednesday. Fortinet disclosed Wednesday that a critical-severity vulnerability affecting numerous versions of FortiManager has seen exploitation in attacks. The flaw is tracked at CVE-2024-47575 and can enable remote execution of code by an unauthenticated threat actor, according…
Read More
The North Korean Lazarus hacking group exploited a Google Chrome zero-day tracked as CVE-2024-4947 through a fake decentralized finance (DeFi) game targeting individuals in the cryptocurrency space. Kaspersky discovered the attacks on May 13, 2024, and reported the Chrome zero-day flaw to Google. Google issued a fix for CVE-2024-4947 on May 25, with Chrome version 125.0.6422.60/.61. Lazarus…
Read More
New variants of a banking malware called Grandoreiro have been found to adopt new tactics in an effort to bypass anti-fraud measures, indicating that the malicious software is continuing to be actively developed despite law enforcement efforts to crack down on the operation. “Only part of this gang was arrested: the remaining operators behind Grandoreiro…
Read More
In an opinion piece published Tuesday in Fortune, four former Intel board members say the U.S. government should use the nearly $20 billion in federal funding it promised to the semiconductor giant as leverage to force the chipmaker to split itself into two companies. Four former Intel board members said the beleaguered semiconductor giant should…
Read More
In the world of cybersecurity, protecting endpoints – such as computers, laptops, and mobile devices – is a top priority for organizations of all sizes.Two common approaches to endpoint security are Endpoint Detection and Response (EDR) and traditional antivirus solutions. While both aim to protect against cyber threats, they differ significantly in their capabilities and…
Read More
Google has announced it will soon allow organizations to create their own curated “Enterprise Web Store” of company-sanctioned browser extensions for Chrome and ChromeOS, aimed at improving productivity, security, and management for businesses. The new store, planned to enter preview later this year, aims to provide businesses with a dedicated, curated environment for browser extensions…
Read More