Kaspersky has issued an advisory about people getting their machines infected with malware by downloading fake Windows 11 installers like "86307_windows 11 build 21996.1 x64 + activator.exe".
Here are the top features and changes that Microsoft is bringing to Windows 11
windows 11 promo
Following the purchase of RiskIQ and ReFirm Labs, Microsoft has now acquired CloudKnox Security to offer unified privileged access and entitlement management in multi-cloud and hybrid environments.
Google has announced a bunch of privacy- and security-focused improvements for Chrome 92. It has also stated that phishing detection is now 50 times faster and drains lower battery than before.
Microsoft has detailed some legal activity that it is engaged in to restrict the use of malicious infrastructure such as typosquatted domains - called "homoglyphs" - that are used for impersonation.
The week that's just ending has brought news relating to Inspire 2021, the ever-present Patch Tuesday, and even a small helping of gaming news. Be sure to catch up via our very handy overview.
After releasing mitigations for a cyberattack that utilizes "DevilsTongue" malware developed by an Israeli company recently, Microsoft says that it is cracking down on private-state offensive actors.
Microsoft has issued an advisory about a cyberattack from a Chinese group targeting SolarWinds' products. A hotfix has been released but organizations are still advised to review guidance.
Ring has ended the technical preview for the video end-to-end encryption feature it launched earlier this year for its video doorbells. The feature is now available worldwide on select Ring doorbells.
Microsoft is said to be paying more than $500 million to acquire San Francisco-based RiskIQ, a cybersecurity firm whose software-as-a-service platform helps customers ward off online security threats.
Despite claims to the contrary, Microsoft says that its PrintNightmare patch works as intended. It states that security researchers who are calling it ineffective are using insecure configurations.
Brazilian criminals are capable of accessing bank accounts using data from stolen iPhones. They don't use any modern ways or advanced tools from Cellebrite, just SIM cards to access devices' data.
Security researchers are reporting that Microsoft's fix for the PrintNightmare vulnerability that rolled out to most Windows versions is ineffective, and can let attackers completely bypass it.
U.S. IT firm Kaseya was rocked by a massive ransomware attack over the weekend in an attack that potentially affects thousands of companies. The responsible group has now demanded $70M in Bitcoin.
Microsoft has offered some further mitigations against the highly dangerous PrintNightmare exploit. The company has also given it a CVSS rating of 8.8/10, which almost awards it "critical" severity.
An exploit called "PrintNightmare" is being investigated by Microsoft. It potentially affects all versions of Windows. U.S. CISA has marked it as "critical" as it can lead to remote code execution.
Twitter hopes to bolster your security by letting you add security keys as the sole two-factor authentication method starting today. Previously, you'd need to have another 2FA option enabled first.
Malicious activity from Nobelium - which has been previously linked to the Russian foreign intelligence agency and the SolarWind attacks - has been detected. Microsoft has issued an advisory.
Microsoft has detailed a bunch of hardware-based protections that Windows 11 will utilize to allow organizations to operate Zero Trust models and enable consumers to finally ditch passwords.
Google's Project Zero team has disclosed yet another elevation of privilege exploit present in Windows given Microsoft's inability to properly fix it in the given 90 days time frame.
The official Python software repository, PyPI, was discovered to host six packages that would download and install cryptomining software on affected systems according to a new report.
Apple has detailed the threats that sideloading of apps poses on user privacy and security. An executive has also stated that iOS is not the platform for you if you want to engage in this activity.
Google Messages is finally rolling out end-to-end encryption for everyone after a beta test that kicked off in November of last year has ended. For now, it supports only one-on-one conversations.
Google is rolling out security enhancements to the Enhanced Safe Browsing experience in Chrome 91. The browser will inform you which extensions are trusted and will also scan risky files on demand.
WinLock is an innovative security application that allows administrators to configure and restrict access to sensitive information on a computer.
Microsoft will integrate ReFirm Labs' firmware analysis technology into the company's existing IoT security platform, offering customers an all-in-one, cloud-based security solution.
The Tails project has released Tails 4.19. Unfortunately, in-built Tor Bridges that were being tested were not included but should be released with Tails 4.20 which is due in mid-July.
After another Nobelium cyberattack, Microsoft has emphasized the need to differentiate between "espionage as usual" acts and crippling attacks like SolarWinds. It has encouraged cloud adoption too.
Microsoft's Compliance Extension for Chrome has hit GA. It enables organizations to utilize Data Loss Prevention and Insider Risk Management solutions to set up fine-grained policies on Chrome.
"Half-double" is a Rowhammer exploit which grants access to wider memory addresses on newer DRAM chips. Malicious code can potentially take control of the full system through this hardware bypass.
In a blog post, Facebook has highlighted its efforts in preventing data misuse and unauthorized scraping. It aims to block illegal scraping at scale without compromising on the platform's features.
Google has announced a bunch of ways that it will be enhancing the privacy of customer data with the introduction of new tooling and technology over the course of this year on both web and mobile.
Vodafone and Accenture have partnered to offer a portfolio of security services for small and medium-sized enterprises. Vodafone earlier called for a slash in VAT for SME cybersecurity products.
Microsoft has issued an advisory about a widespread and sophisticated gift card scam that is targeting organizations across various sectors. Companies are requested to use Defender for Office 365.
Counterfit is a tool from Microsoft which can be used to automate the security testing of AI models at scale. It is environment-, model-, and data-agnostic so can be used in a variety of situations.
Microsoft Defender for Endpoint has been enhanced using advancements in Intel Threat Detection Technology to detect cryptojacking attacks via machine learning heuristics based on CPU telemetry.
In a sort of "year in review" for 2020, Google has disclosed some of the methods it enforced to combat the distribution of malicious content in the Play Store, along with some accompanying statistics.
Microsoft has announced that it will allow the SHA-1 Trusted Root Certificate Authority to expire, and all major services and processes will exclusively use SHA-2 starting from next month.
Microsoft has released a new set of security updates for numerous Exchange Server versions following the discovery of certain security flaws. Exchange Online once again contains protections already.
NortonLifeLock has released new data that suggests 330 million people in 10 countries were affected by cybercrime last year with 55 million people being affected by identity theft.
Splunk believes every organization needs a security nerve center, implemented by following a six-stage security journey described for you in this free to download eBook guide. Claim your copy now!