Independent – Computer Security Articles

Tech big wigs: Hit the brakes on AI rollouts

March 29, 2023 admin 0 Comments Artificial Intelligence, chatbots, Emerging Technology, google, microsoft, privacy, Security

More than 1,100 technology luminaries, leaders and scientists have issued a warning against labs performing large-scale experiments with artificial intelligence (AI) more powerful than ChatGPT, saying the technology poses a grave threat to humanity.

In an open letter published by The Future of Life Institute, a nonprofit organization that aims is to reduce global catastrophic and existential risks to humanity, Apple co-founder Steve Wozniak, SpaceX and Tesla CEO Elon Musk, and MIT Future of Life Institute President Max Tegmark joined other signatories in saying AI poses “profound risks to society and humanity, as shown by extensive research and acknowledged by top AI labs.”

To read this article in full, please click here

Independent Krebs

UK Sets Up Fake Booter Sites To Muddy DDoS Market

March 28, 2023 admin 0 Comments A Little Sunshine, booter, ddos-for-hire, National Crime Agency, Operation Power Off, stresser, u.s. department of justice, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 28 Mar 2023 17:26:07 +0000

The United Kingdom’s National Crime Agency (NCA) has been busy setting up phony DDoS-for-hire websites that seek to collect information on users, remind them that launching DDoS attacks is illegal, and generally increase the level of paranoia for people looking to hire such services.

ComputerWorld Independent

Q&A: Cisco CIO Fletcher Previn on the challenges of a hybrid workplace

March 27, 2023 admin 0 Comments Endpoint Protection, IT Leadership, IT Management, IT Strategy, Networking, remote work, Security

In April, 2021, Cisco CEO Chuck Robbins announced he would let all 75,000 employees work remotely indefinitely, even after the COVID-19 pandemic ended. The company had seen no drop in productivity by allowing employees to work from home and expected to save money by not fully staffing offices. When and how often employees should come into the office would be up to their managers, who abide by a flexible hybrid policy.

But that shift brought technology challenges most companies are by now familiar with: how do you secure networks when the employee’s home is essentially a branch office? How do you create company culture from afar? And, how do you retain employees at a time when IT talent is in historically high demand.

To read this article in full, please click here

Independent Krebs

Google Suspends Chinese E-Commerce App Pinduoduo Over Malware

March 22, 2023 admin A Little Sunshine, breachforums, bytedance, darknavy, data breaches, google, Latest Warnings, liu huafang, pdd holdings, pinduoduo, project zero, temu, TikTok, Web Fraud 2.0, weibo

Credit to Author: BrianKrebs| Date: Wed, 22 Mar 2023 23:11:08 +0000

Google says it has suspended the app for the Chinese e-commerce giant Pinduoduo after malware was found in versions of the app. The move comes just weeks after Chinese security researchers published an analysis suggesting the popular e-commerce app sought to seize total control over affected devices by exploiting multiple security vulnerabilities in a variety of Android-based smartphones.

Independent Krebs

Why You Should Opt Out of Sharing Data With Your Mobile Provider

March 20, 2023 admin A Little Sunshine, AT&T, CCPA, cpni, custom experience plus, customer proprietary network information, data breaches, Electronic Privacy Information Center, enhanced relevant advertising program, FCC, Federal Communications Commission, gavin wright, maids, mashable, mobile advertising ids, T-Mobile, techtarget, Verizon, verizon custom experience plus, verizon selects, Verizon Wireless

Credit to Author: BrianKrebs| Date: Mon, 20 Mar 2023 14:47:56 +0000

A new breach involving data from nine million AT&T customers is a fresh reminder that your mobile provider likely collects and shares a great deal of information about where you go and what you do with your mobile device — unless and until you affirmatively opt out of this data collection. Here’s a primer on why you might want to do that, and how. Certain questions might be coming to mind right now, like “What the heck is CPNI?” And, ‘If it’s so ‘customer proprietary,’ why is AT&T sharing it with marketers?” Also maybe, “What can I do about it?” Read on for answers to all three questions.

ComputerWorld Independent

Russia’s iPhone ban and the digital supply chain

March 20, 2023 admin apple, iPhone, Mobile, Security, small and medium business

Russia’s Kremlin ordered officials to stop using iPhones, apparently over concerns the devices could be vulnerable to Western intelligence agencies, Reuters reports. When surveillance-as-a-service firms sit exposed for brazenly undermining device security, it’s hard to think there isn’t an argument there. But the bigger story isn’t the harm to Apple’s small business in Russia, it’s the threat to digital supply chains it shows.

To read this article in full, please click here

Independent Krebs

Feds Charge NY Man as BreachForums Boss “Pompompurin”

March 17, 2023 admin A Little Sunshine, breachforums, conor brian fitzpatrick, dc health link, FBI, john langmire, Ne'er-Do-Well News, pompompurin

Credit to Author: BrianKrebs| Date: Fri, 17 Mar 2023 23:39:22 +0000

The U.S. Federal Bureau of Investigation (FBI) this week arrested a New York man on suspicion of running BreachForums, a popular English-language cybercrime forum where some of the world biggest hacked databases routinely first show up for sale. The forum’s administrator “Pompompurin” has been a thorn in the side of the FBI for years, and BreachForums is widely considered a reincarnation of RaidForums, a remarkably similar crime forum that the FBI infiltrated and dismantled in 2022.

ComputerWorld Independent

Patch Office and Windows now to resolve two zero-days

March 17, 2023 admin microsoft, Security, small and medium business, windows

Microsoft has resolved 80 new CVEs this month in addition to four earlier CVEs, bringing the number of security issues addressed in this month’s Patch Tuesday release to 84.

Unfortunately, we have two zero-day flaws in Outlook (CVE-2023-23397) and Windows (CVE-2023-24880) that require a “Patch Now” release requirement for both Windows and Microsoft Office updates. As it was last month, there were no further updates for Microsoft Exchange Server or Adobe Reader. This month the team at Application Readiness has provided a helpful infographic that outlines the risks associated with each of the updates for this cycle.

To read this article in full, please click here

← Previous