September 15, 2021

Beyond Identity announced a solution that closes a critical vulnerability and secures the software supply chain against insider threats and malicious attacks. Beyond Identity’s new Secure DevOps product establishes a simple, secure, and automated way t…

Read More Beyond Identity’s solution secures the software supply chain against insider threats and malicious attacks

This blog details our in-depth analysis of the attacks that used the CVE-2021-40444, provides detection details and investigation guidance for Microsoft 365 Defender customers, and lists mitigation steps for hardening networks against this and similar attacks.

The post Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability appeared first on Microsoft Security Blog.

Read More Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability

Anonymous claims to have hacked the controversial web hosting provider Epik, known for allowing far-right, neo-Nazi, and other extremist content. Anonymous hacktivist collective claims has claimed to have hacked the controversial web hosting provided Epik and stolen its data, including information of the clients of the company, as part of an operation codenamed EPIKFAIL. The hosting […]

The post Anonymous hacked the controversial, far-right web host Epik appeared first on Security Affairs.

Read More Anonymous hacked the controversial, far-right web host Epik

As CIOs continue to weather the Covid crisis, there is tremendous value in the insights and priorities shared in the most recent CanadianCIO Census. A snapshot of day-to-day business hurdles, it pays special attention to the positive impact of data analytics, and the erroneous notion that it cannot be measured. “This is a classic problem,” […]

The post Anything will tell you something: The truth about data analytics first appeared on IT World Canada.

Read More Anything will tell you something: The truth about data analytics

This week Google Canada celebrated the opening of its Toronto cloud region, its second in Canada and its 28th worldwide. The first Canadian cloud region opened in 2018 in Montreal. The new region launches with three availability zones and offers a core portfolio of Google Cloud Platform products, including Compute Engine, App Engine, Google Kubernetes […]

The post Google Cloud launches Toronto region first appeared on IT World Canada.

Read More Google Cloud launches Toronto region

OMIGOD – Microsoft addressed four vulnerabilities in the Open Management Infrastructure (OMI) software agent that could expose Azure users to attacks. Recently released September 2021 Patch Tuesday security updates have addressed four severe vulnerabilities, collectively tracked as OMIGOD, in the Open Management Infrastructure (OMI) software agent that exposes Azure users to attack. Below is the list of the […]

The post OMIGOD vulnerabilities expose thousands of Azure users to hack appeared first on Security Affairs.

Read More OMIGOD vulnerabilities expose thousands of Azure users to hack

Microsoft announced that users can access their consumer accounts without providing passwords and using more secure authentication methods. Microsoft will allow its users to log into their consumer accounts without using passwords, they will be able to use Microsoft’s Authenticator app, Windows Hello, physical security keys, or phone/email verification codes. “Which is why I’m so […]

The post Microsoft announces passwordless authentication for consumer accounts appeared first on Security Affairs.

Read More Microsoft announces passwordless authentication for consumer accounts

It’s the eyes:

The researchers note that in many cases, users can simply zoom in on the eyes of a person they suspect may not be real to spot the pupil irregularities. They also note that it would not be difficult to write software to spot such errors and for social media sites to use it to remove such content. Unfortunately, they also note that now that such irregularities have been identified, the people creating the fake pictures can simply add a feature to ensure the roundness of pupils.

And the arms race continues….

Research paper.

Read More Identifying Computer-Generated Faces

During Patch Tuesday September, Microsoft released over 60 security-related updates and patches, including fixes for two issues labeled as “critical” – CVE-2021-40444, that leverages IE’s MSHTML component and CVE-2021-36965, also nicknamed the WL…

Read More Patch Tuesday September 2021 – Microsoft to Release 60 Security Updates and Patches, Including Two Zero-Day Fixes

Today’s podcast reports on the discovery of an unprotected database of fitness app information, an attack at Olympus and  important security patches released

The post Cyber Security Today, Sept. 15, 2021 – Huge database of fitness app information found unprotected, attack on Olympus and security patches released first appeared on IT World Canada.

Read More Cyber Security Today, Sept. 15, 2021 – Huge database of fitness app information found unprotected, attack on Olympus and security patches released

Three former NSA employees entered into a deferred prosecution agreement that restricts their future activities and employment and requires the payment of a penalty. Three former NSA employees (Marc Baier, 49, Ryan Adams, 34, and Daniel Gericke, 40) entered into a deferred prosecution agreement that restricts their future activities and employment. The trio has worked as hackers-for-hire […]

The post Three formers NSA employees fined for providing hacker-for-hire services to UAE firm appeared first on Security Affairs.

Read More Three formers NSA employees fined for providing hacker-for-hire services to UAE firm

Instagram is shown to be harmful to teens per a Facebook-led report, Steve Wozniak looks towards the cosmos, and a surprising social media influencer is raking in the sponsorships. It’s all the tech news that’s trending right now, welcome to Hashtag Trending! It’s Wednesday, September 15, and I’m your host, Tom Li. An internal research […]

The post Hashtag Trending Sept. 15 – Instagram harms teens; Wozniak for space; Virtual influencer rakes in sponsorships first appeared on IT World Canada.

Read More Hashtag Trending Sept. 15 – Instagram harms teens; Wozniak for space; Virtual influencer rakes in sponsorships