Security

Windows 11 22H2 Enhanced Phishing Protection

A new security feature (though this is not enabled by default) has been introduced in the newly released Windows 11 22H2 update. Enhanced Phishing Protection is more targeted towards enterprise users as phishing attacks are the most common way hackers/attackers breach corporate networks. In some cases, simply typing your password in a phishing login form, and not submitting them, is enough for them to be stolen by threat actors. To combat this behavior, Microsoft introduced a new feature called ‘Enhanced Phishing Protection’ that warns users when they enter their Windows password on a website or enter it into an insecure application. When enabled, Microsoft…

Read More

Weekly Roundup: The Good, The Bad and The Ugly

It is Sunday, September 25th and time for a new weekly feature where we look back at the tech news this past week and highlight one each of the: The Good, The Bad and The Ugly. This week as a bit of a slow week even with Microsoft’s Windows 11 22H2 update. The Good There has been much talk these days about slowing down climate change and reducing C02 emissions by getting people to ditch their ICE vehicles in favor of battery Electric Vehicles (EVs). However, the effects of climate change (extreme heat/cold) are taking its toll on the US…

Read More

Morgan Stanley fined $35M: Unencrypted and Unwiped Hard Drives Auctioned

This is ugly, sloppy and overall very unacceptable behavior for a company the size and caliber of Morgan Stanley: Morgan Stanley on Tuesday agreed to pay the Securities and Exchange Commission (SEC) a $35 million penalty for data security lapses that included unencrypted hard drives from decommissioned data centers being resold on auction sites without first being wiped. Much of the failure stemmed from the 2016 hire of a moving company with no experience or expertise in data destruction services to decommission thousands of hard drives and servers containing the data of millions of customers. The moving company received 53…

Read More

Spellcheck is a blessing and a curse. On one hand you get instant feedback if you mistype something. On the other hand, it causes people not to know how to correctly spell. However, if users have opted-in to use Chrome’s Enhanced Spellcheck or Microsoft Editor (add-on) in Edge, users could unknowingly be sending Personally Identifiable Information (PII) to Google or Microsoft. Users can check if they opted-in to use Chrome’s Enhanced Spellcheck. by entering: chrome://settings/?search=Enhanced+Spell+Check in the Chrome address bar. Enhanced spell check setting in Chrome needs to be opted-in (BleepingComputer) Now you may be wondering what kind of PII could I…

Read More

Microsoft Edge Users Beware: Tech Support Scam via Newsfeed

Microsoft’s Edge Browser is built off of Chrome is the default (and if S Mode is enabled only) browser for Windows 10 and 11. Some users are being feed fake stories in their Microsoft Edge Newsfeed which when clicked-on can bring up a fake Microsoft Defender Security Center landing page with a toll-free number to call Microsoft. Alternatively, clicking the ‘ad’ may bring the user to a decoy page. This is yet another variation of the ever evolving and popular Tech Support Scams. These fake ads/stories have a catchy headline and picture such as ‘Man Finds a Hidden Cave Inside…

Read More

HP Inc. to Settle with EU Printer Customers over Dynamic Security Issues

HP promoted their Dynamic Security System to their customers as a way to “upgrade their experience and maintain the integrity of its printing systems.” Instead many consumers found their Internet connected HP printers turned into an expensive paper-weight when their devices refused to work. According to a US Class Action Lawsuit: In or around late October and early November, 2020, HP caused to be transmitted a firmware update containing malware designed to lock out then-compatible third-party supply cartridges. HP wrote, designed, and transmitted the firmware or a portion thereof solely for the purpose of disabling third-party supply cartridges, which were…

Read More

Your Search Data is Being Leaked to Advertisers

Ever notice how when you search for something on one site, you suddenly start seeing advertisements for that ‘something’ following you around wherever you go on the Internet? May be you don’t even really pay attention anymore because it is so common. Indeed it is very common: Security researchers have found that roughly eight out of ten websites featuring a search bar will leak their visitor’s search terms to online advertisers like Google. This practice has the implication of breaching the users’ privacy and leaking sensitive information to a massive network of third parties who can then use this data…

Read More

Tik Tok: We were NOT Hacked

TikTok the short-form video hosting service owned by Chinese company ByteDance is strongly denying claims it has been hacked. TikTok is denying reports that it was breached after a hacking group posted images of what they claim is a TikTok database that contains the platform’s source code and user information (via Bleeping Computer). In response to these allegations, TikTok said its team “found no evidence of a security breach.” “We have confirmed that the data samples in question are all publicly accessible and are not due to any compromise of TikTok systems, networks, or databases,” TikTok spokesperson Maureen Shanahan said in…

Read More

Windows Defender Throwing False Win32/Hive.ZY Alert

Windows users world wide are in a panic today as Windows Defender is throwing a false Win32/Hive.ZY Alert when certain popular apps (including Microsoft’s own Edge browser) are opened. A bad Microsoft Defender signature update mistakenly detects Google Chrome, Microsoft Edge, Discord, and other Electron apps as ‘Win32/Hive.ZY’ each time the apps are opened in Windows. The issue started Sunday morning when Microsoft pushed out Defender signature update 1.373.1508.0 to include two new threat detections, including Behavior:Win32/Hive.ZY. Microsoft is aware of the issue and is pushing out new security intelligence updates. To check for new security intelligence updates Search for and open Windows…

Read More

A ‘Physical’ DDOoS Attack

Typically when you hear about DDoS Attacks, you think of websites being brought down or crawling under the weight of superfluous requests. The hacktivist group Anonymous performed a ‘physicals’ DDoS attack of sorts on September 1st. They performed said ‘attack’ by exploiting the Russian ride-hailing app, Yandex Taxi tp summon dozens of taxis to Kutuzov Prospect in Moscow. “On the morning of September 1, Yandex.Taxi encountered an attempt by attackers to disrupt the service — several dozen drivers received bulk orders to the Fili region,” Yandex Taxi said in a statement to the Russian state-owned outlet TASS. The ride-hailing service, which is owned…

Read More