The White House has announced a voluntary labelling programme to help consumers pick out the best smart home devices in terms of security. They will have strong defaults and receive updates.
Security RSS
The TikTok app for iOS is getting support for Passkeys, the company announced. The passwordless login feature will first arrive in Asia, Africa, Australia, and South America, starting this month.
GitHub has added public beta passkey support. Passkeys are a new login method that removes the need for passwords and two-factor authentication. They are supported on modern browsers and devices.
Microsoft released the July Patch Tuesday update KB5028185 to Windows 11 users. To get it, just open up Windows Update and apply any available updates. You can also download it for offline installs.
WinLock is an innovative security application that allows administrators to configure and restrict access to sensitive information on a computer.
TSMC has said that it wasn't greatly affected by LockBit malware that hit one of its suppliers. Despite this, hackers have demanded a $70 million ransom, or it will leak info it claims to have.
The makers of Proton Mail have launched their new password manager called Proton Pass. Its free and paid versions are available as browser extensions and downloadable on Android, iPhone, and iPad.
Further to Reddit's recent woes since the announcement of the API pricing change, claims have surfaced that it has suffered a data breach at the hands of BlackCat, with 80GB of zipped data taken.
Canonical has said Ubuntu 22.10 Kinetic Kudu will reach end of life on July 20. For this reason, it's important to upgrade to Ubuntu 23.04 so that you will continue to get important security updates.
Microsoft released the June Patch Tuesday update KB5027231 to Windows 11 users. To get it, just open up Windows Update and apply any available updates. You can also download it for offline installs.
World of Warcraft players that use the Battle.net Authenticator will earn four extra bag slots and the Core Hound Pup in-game pet. If you want to turn on the authenticator, read on for instructions.
To raise awareness, WhatsApp introduces Security Center to its users, highlighting security measures it has in place and the resources available. It also brings some redesign to iOS and Android.
Samsung has highlighted three core features of Knox Matrix, a feature designed to protect multiple devices. According to the South Korean tech giant, Knox Matrix is based on a 'revolutionary' idea.
Google has changed its Vulnerability Reward Program to give higher payouts. It also expects more detailed reports from security researchers and they will be ranked as High, Medium, and Low impact.
Security experts have raised warnings about Google's new .zip and .mov top-level domains because they look like file extensions and could be used maliciously. They are already being used in the wild.
Apple has published a report that claims it prevented over $2 billion in fraudulent App Store transactions and rejected nearly 1.7 million submissions for not meeting the App Store standards.
Toyota left the cloud data of its customers exposed to the public for nearly a decade, it has been reported. Thankfully, the company seems to have detected the issue before the data was misused.
Microsoft released the May Patch Tuesday update KB5026372 to Windows 11 users. To get it, just open up Windows Update and apply any available updates. You can also download it for offline installs.
Zoho has released a new web browser, based on Chrome, called Ulaa. It comes with more privacy and security protections and several ways to help boost your productivity, including Work Mode.
Meta is posting more info on new malware threats. It aims to inform users about recent malware behaviors, methods of penetration, and their effort towards disrupting the spread of malware.
Box is partnering up with OpenAI to bring generative AI capabilities into its products. Users can ask Box AI to summarize or answer questions about their documents or other data over the cloud.
Google TAG has deleted thousands of Youtube channels in 2023 so far. This was done as part of its investigation into coordinated influence operation campaigns linked to different countries.
Apple for the first time is pushing out a Rapid Security Response update. All supported iOS, iPadOS, and macOS devices on the latest versions are scheduled to receive this OTA update automatically.
Microsoft is enforcing hardening across Kerberos and more protocols, to protect against security vulnerabilities it discovered in 2021. Today, it has shared a roadmap outlining the changes.
Users of AT&T email accounts are facing a wave of hacks by bad actors who are seeking to steal cryptocurrency, by utilising API issues in the service to take control of email addresses.
Although Google Authenticator customers are rejoicing over the addition of sync functionality to the app, security researchers have noted that it does not have end-to-end encryption yet.
GitHub users will now be able to privately report vulnerabilities to code maintainers. The feature was in public beta since last year but has been graduated to general availability.
Tails 5.12 is now available. It comes with several improvements for the persistent storage feature such as secure password generation and a new delete data option after disabling the feature.
Hacker Gary Bowser from the infamous Team-Xecuter Nintendo piracy group has been released early from prison. However, he will likely be paying off fines to Nintendo for the rest of his life.
WhatsApp will roll out several new security features in the coming months. They include Account Protect, Device Verification, and Automatic Security Codes. End users don't need to act to get these.
Ubuntu's HWE kernels will soon be covered by the Ubuntu Pro Livepatch service. This will mean that updates to these kernels will not require reboots to complete the installation, reducing downtime.
While the My Cloud service from Western Digital may be up and running again, the computer storage and memory company still has not offered an update on the cyberattack on its network.
Fueled by "popular demand", Microsoft has finally introduced Windows Local Administrator Password Solution (LAPS) as a built-in feature on certain versions of its operating system.
OpenAI is asking security researchers to find and report potential bugs in ChatGPT and other services. The company is handing out cash prizes of up to $20,000 depending on the bug's severity.
WinLock is an innovative security application that allows administrators to configure and restrict access to sensitive information on a computer.
LG says it has become the first auto component supplier to attain global safety and cybersecurity certifications. It said these are increasingly necessary to remain competitive in the space.
Microsoft has brought several sophisticated cybersecurity features to Teams through Microsoft Defender 365. However, the capabilities are only available to customers with certain licenses.
Microsoft has decided to effectively delay the deprecation of Remote PowerShell in Exchange Online in order to allow customers more time to migrate to the more secure REST-based v3 PowerShell module.
The latest edition of Microsoft Weekly is filled to the brim with news about updates to Microsoft 365 apps and services like Teams and Edge, new features and bugs in Windows, and Copilot upgrades.
U.S. federal cybersecurity agency CISA has developed a Python-based utility to detect signs of hacking in Microsoft cloud environments including Microsoft 365, Azure, and Azure Active Directory (AAD).