Author: nlqip
The June 2024 optional update for Windows 10 is now available. Today’s update brings KB5039299 for Windows 10 version 22H2 with up to ten bug fixes or changes. This update bumps Windows 10 22H2 to Build 19045.4598. Since this is an optional release, it doesn’t add new features but has several quality improvements. For example, Microsoft has patched an…
Read More
A novel Android attack vector from a piece of malware tracked as Snowblind is abusing a security feature to bypass existing anti-tampering protections in apps that handle sensitive user data. Snowblind’s goal is to repackage a target app to make them unable to detect abuse of accessibility services that allow it to obtain user input…
Read More
To manage your cloud resources effectively and securely, you need to consistently tag assets across all your cloud platforms. Here we explain tagging’s main benefits, as well as proven strategies and best practices for tagging success. The first step in securing a cloud environment is understanding where your assets are running. This can pose huge…
Read More
The hospital giant, however, reassured that no claims or insurance information, credit card or bank account numbers, other financial information, or Social Security numbers were inappropriately accessed by the company’s former employee. “Our patients’ and members’ privacy is a top priority, and we take protecting it very seriously,” Jonathan Friesen, Geisinger’s chief privacy officer, said…
Read More
For context, one in seven enterprises will soon be using a staggering 250 petabytes of data just for building and training AI/ML models, a 2023 report by 451 Research said. Exposure of such sensitive data can have direct and real-world consequences on people and organizations. Multicloud usage and SaaS applications complicate cloud security To cater…
Read More
Jun 26, 2024NewsroomFirmware Security / Vulnerability Apple has released a firmware update for AirPods that could allow a malicious actor to gain access to the headphones in an unauthorized manner. Tracked as CVE-2024-27867, the authentication issue affects AirPods (2nd generation and later), AirPods Pro (all models), AirPods Max, Powerbeats Pro, and Beats Fit Pro. “When…
Read MoreThe US Is Banning Kaspersky This move has been coming for a long time. The Biden administration on Thursday said it’s banning the company from selling its products to new US-based customers starting on July 20, with the company only allowed to provide software updates to existing customers through September 29. The ban—the first such…
Read More
The heightened regulatory and legal pressure on software-producing organizations to secure their supply chains and ensure the integrity of their software should come as no surprise. In the last several years, the software supply chain has become an increasingly attractive target for attackers who see opportunities to force-multiply their attacks by orders of magnitude. For…
Read More
Jun 26, 2024NewsroomCyber Attack / Malware Threat actors with suspected ties to China and North Korea have been linked to ransomware and data encryption attacks targeting government and critical infrastructure sectors across the world between 2021 and 2023. While one cluster of activity has been associated with the ChamelGang (aka CamoFei), the second cluster overlaps…
Read More
“While other cloud security players with similar legacies in CSPM foray into cloud detection and response and runtime agents (e.g. Wiz’s acquisition of Gem Security), with this move, Orca is expanding on its posture-only capabilities, relying even more heavily on its side-scanning technology to increase breadth across the software supply chain,” Yates said. Additionally, Orca…
Read More