Troy Hunt
OCTOBER 9, 2021
A lot of cyber things this week: loads of data breach (or "scrape", In LinkedIn's case) incidents, Windows 11 upgrade experiences and then bricking my house courtesy of a Home Assistant update that fundamentally changed the Tuya integration. So pretty much "same, same but different" to every other week 🙂 References I've done another podcast with 1Password ("Crocodile Shower Privacy Settings with Troy Hunt" - yep!
Bleeping Computer
OCTOBER 9, 2021
The U.S. District Court for the Eastern District of Virginia has charged three men with money laundering and aggravated identity theft after allegedly conducting a business email compromise (BEC) scheme. [.].
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Security Affairs
OCTOBER 9, 2021
Google has addressed a total of four high-severity vulnerabilities in the Chrome version for Windows, Mac, and Linux. Google released security updates to address a total of four high-severity vulnerabilities in the Chrome version for Windows, Mac, and Linux. The most severe vulnerability, tracked as CVE-2021-37977, is an after-free issue in Garbage Collection that could lead to arbitrary code execution.
Bleeping Computer
OCTOBER 9, 2021
Microsoft has released the final version of its security configuration baseline settings for Windows 11, downloadable today using the Microsoft Security Compliance Toolkit. [.].
Advertisement
How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.
Security Affairs
OCTOBER 9, 2021
CyberNews researchers found an exposed configuration file hosted on a Sky.com subdomain containing production data. Original post @ [link]. CyberNews researchers found an exposed configuration file hosted on a Sky.com subdomain, containing what appear to be production-level database access credentials, as well as addresses to development endpoints. Sky, a subsidiary of Comcast, is Europe’s largest media company, boasting a 12% market share and a revenue of approximately £13.4 billion in 20
Bleeping Computer
OCTOBER 9, 2021
Windows 11 is officially released, and users are running into various issues and problems preventing them from upgrading or using the new operating system correctly. Below we have collected eight known issues affecting Windows 11 and when they are expected to be fixed. [.].
Cyber Security Informer brings together the best content for cyber security professionals from the widest variety of industry thought leaders.
WIRED Threat Level
OCTOBER 9, 2021
Plus: Twitch hack fallout, Russian phishing, and more of the week’s top security news.
Security Affairs
OCTOBER 9, 2021
Security expert Dhiraj Mishra published an NMAP script for the CVE-2021-41773 Path Traversal vulnerability affecting Apache Web Server version 2.4.49. Security researcher Dhiraj Mishra released an NMAP script for the CVE-2021-41773 path traversal vulnerability affecting Apache Web Server version 2.4.49. We have reproduced the fresh CVE-2021-41773 Path Traversal vulnerability in Apache 2.4.49.
Security Boulevard
OCTOBER 9, 2021
Our thanks to DEFCON for publishing their tremendous DEFCON Conference Biohacking Village videos on the groups' YouTube channel. Permalink. The post DEF CON 29 Biohacking Village – Alex Pearlman’s ‘A Cohort Of Pirate Ships’ appeared first on Security Boulevard.
WIRED Threat Level
OCTOBER 9, 2021
A federal judge ruled that the content-delivery service doesn't "contribute" to copyright infringement.
Advertiser: Revenera
In a recent study, IDC found that 64% of organizations said they were already using open source in software development with a further 25% planning to in the next year. Most organizations are unaware of just how much open-source code is used and underestimate their dependency on it. As enterprises grow the use of open-source software, they face a new challenge: understanding the scope of open-source software that's being used throughout the organization and the corresponding exposure.
Security Boulevard
OCTOBER 9, 2021
Our thanks to DEFCON for publishing their tremendous DEFCON Conference Biohacking Village videos on the groups' YouTube channel. Permalink. The post DEF CON 29 Biohacking Village – Lucia (@BadHippa) Savage’s ‘A Talk With @BadHIPPA’ appeared first on Security Boulevard.
CyberSecurity Insiders
OCTOBER 9, 2021
Megan “Meg” West, CISSP, is an Incident Response Consultant for IBM’s X-Force Incident Response Team. Prior to joining IBM, she worked as the Global Cybersecurity Incident Response Manager for another F100 company. She currently holds the CISSP and Security+ certifications as well as a Master of Science degree in cybersecurity. She has spoken at several international cybersecurity conferences including (ISC)² Security Congress and SAP Sapphire Now.
Security Boulevard
OCTOBER 9, 2021
via the comic artistry and dry wit of Randall Munroe , resident at XKCD ! Permalink. The post XKCD ‘Air Travel Packing List’ appeared first on Security Boulevard.
Security Boulevard
OCTOBER 9, 2021
A routine maintenance error severs Facebook’s data centers from the Internet for over 6 hours On October 4, Facebook users suffered a complete outage affecting all apps including WhatsApp, Instagram, and Messenger for over 6 hours. Nearly 2.9 billion users were not only inconvenienced, but many also lost a crucial means of communication in regions Read more.
Advertisement
Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.
Expert insights. Personalized for you.
275 
Let's personalize your content