Author: nlqip

​QNAP has pulled a recently released firmware update after widespread customer reports that it’s breaking connectivity and, in some cases, locking users out of their devices. QTS 5.2.2.2950 build 20241114, the buggy firmware causing these issues, was released this Tuesday for a long list of QTS network-attached storage (NAS) models to patch multiple security vulnerabilities…

Read More

‘It’s not about dictating the solution,’ says Dave MacKinnon, N-able VP and chief security officer. ‘It’s about working together as an ecosystem. Cybersecurity and compliance are a team sport. We need to collaborate, share information, and build resilience collectively.’ As the regulatory landscape for MSPs continues to evolve, businesses are increasingly focusing on building cyber…

Read More

Russian state hackers APT28 (Fancy Bear/Forest Blizzard/Sofacy) breached a U.S. company through its enterprise WiFi network while being thousands of miles away, by leveraging a novel technique called “nearest neighbor attack.” The threat actor pivoted to the target after first compromising an organization in a nearby building within the WiFi range. The attack was discovered on…

Read More

​Microsoft announced today that its controversial AI-powered Recall feature is finally rolling out to Windows Insiders in the Dev Channel using Snapdragon-powered Copilot+ PCs. Today’s announcement follows two other delays in June and last month, as well as the company’s hurried statement in August that Recall would be available for insiders starting in October. “When…

Read More

For the week ending Nov. 22, CRN takes a look at the companies that brought their ‘A’ game to the channel including Wiz, Google Cloud, Descope, Nvidia, DXC and ServiceNow. The Week Ending Nov. 22 Topping this week’s Came to Win list is fast-growing cloud security provider Wiz for a strategic acquisition around cloud remediation…

Read More

From Celestial AI to Untether AI, these startups are seeking to challenge Nvidia’s AI computing dominance or deliver complementary chip technologies that could shake up the tech industry. While Nvidia commands tens of billions of dollars in AI chip spending every quarter, there are a good deal of companies and investors who believe there is…

Read More

Don’t miss OWASP’s update to its “Top 10 Risks for LLMs” list. Plus, the ranking of the most harmful software weaknesses is out. Meanwhile, critical infrastructure orgs have a new framework for using AI securely. And get the latest on the BianLian ransomware gang and on the cybersecurity of water and transportation systems. Dive into…

Read More

Healthcare ransomware attacks are increasing, putting patients at risk and threatening the financial stability of organizations. Hospitals depend significantly on digital systems for patient care. These attacks can disrupt operations, endanger lives, and harm reputations. As healthcare becomes a key target for cybercriminals, strong ransomware defense is essential—not only for healthcare but for all IT…

Read More

Hackers have already compromised thousands of Palo Alto Networks firewalls in attacks exploiting two recently patched zero-day vulnerabilities. The two security flaws are an authentication bypass (CVE-2024-0012) in the PAN-OS management web interface that remote attackers can exploit to gain administrator privileges and a PAN-OS privilege escalation (CVE-2024-9474) that helps them run commands on the…

Read More