Author: nlqip
The U.S. cybersecurity agency also added a recently disclosed Google Pixel flaw to its list of exploited vulnerabilities. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) confirmed that a Microsoft Windows privilege escalation vulnerability has seen exploitation in attacks. The vulnerability (tracked at CVE-2024-26169) this week was tied to attacks by the Black Basta ransomware…
Read More
Chinese walls Representative Carlos Gimenez, a Florida Republican, questioned Microsoft’s operations in China, which Smith testified accounted for less than 1.5% of Microsoft’s sales. China’s 2017 National Intelligence Law obliges all organisations including foreign companies to cooperate with China’s intelligence agencies in matters of national security. Smith, an attorney and Microsoft’s general counsel for more…
Read More
Microsoft is pitching Recall, which takes periodic screenshots of a computer’s screen to enable new search capabilities, as a key feature for Copilot+ PCs. Launching next week, these devices are what the company is calling ‘the fastest, most intelligent Windows PCs ever built.’ Microsoft said it’s delaying the public release of Recall, the controversial, AI-enabled…
Read MoreUpcoming Speaking Engagements This is a current list of where and when I am scheduled to speak: I’m appearing on a panel on Society and Democracy at ACM Collective Intelligence in Boston, Massachusetts. The conference runs from June 26 through 29, 2024, and my panel is at 9:00 AM on Friday, June 28. I’m speaking…
Read More
Microsoft says it removed a Copilot app that was “incorrectly” added to Windows 10 and Windows 11 systems in April due to buggy Microsoft Edge updates. The AI-powered Copilot digital assistant was also added to some Windows Server 2025 preview builds earlier this year, but the company removed it after backlash from Windows admins. However, after…
Read More
From Microsoft Azure AI and Google Vertex AI to OpenAI GPT and IBM watsonx, here are the world’s top 10 cloud AI developer services ranked in Gartner’s new report. As the AI era gets underway, the largest and most innovative cloud companies in the world are investing heavily in developer services to deliver the promised…
Read More
A former quality assurance employee of National Computer Systems (NCS) was sentenced to two years and eight months in prison for reportedly deleting 180 virtual servers after being fired. Nagaraju Kandula, 39, pleaded guilty to deleting the virtual servers in an attempt to sabotage the firm’s systems out of spite for getting fired from NCS,…
Read More
The Scattered Spider gang has started to steal data from software-as-a-service (SaaS) applications and establish persistence through creating new virtual machines. Also tracked as a.k.a. Octo Tempest, 0ktapus, Scatter Swine, and UNC3944, the gang typically engages in social engineering attacks that use SMS phishing, SIM swapping, and account hijacking for on-premise access. Scattered Spider is the name given…
Read More
Check out the NCSC’s call for software vendors to make their products more secure. Plus, why the Treasury Department is looking at how financial institutions are using AI. And the latest on the cybersecurity skills gap in the U.S. And much more! Dive into six things that are top of mind for the week ending…
Read More
American financial services holding company Globe Life says attackers may have accessed consumer and policyholder data after breaching one of its web portals. The incident was discovered on Thursday, June 13, while reviewing potential vulnerabilities related to access permissions and user identity management for the web portal following an inquiry from a state insurance regulator.…
Read More