January 2020 – Page 20 – PossibleThreat Articles

Today's Patch Tuesday brings fireworks and — a magic bullet?

January 14, 2020 0 Comments Microsoft, Security, Windows

Credit to Author: Woody Leonhard| Date: Tue, 14 Jan 2020 05:48:00 -0800

Over the past few years we’ve seen a few security holes that have drawn Chicken Little warnings and vast amounts of unthinking press reports. When you turn on a local news program and hear from the hometown weather reporter that you really need to get Windows patched, a bit of skepticism might be in order.

Today’s Patch Tuesday appears to be headed down the same well-worn chute.

Brian Krebs, the security guru with impeccable credentials, fired an opening salvo in his blog post yesterday:

To read this article in full, please click here

ComputerWorld Independent

Seven high points of Windows 7

January 14, 2020 0 Comments Microsoft, PCs, Security, Windows

Credit to Author: Gregg Keizer| Date: Tue, 14 Jan 2020 04:16:00 -0800

Today Microsoft issues its final free security update for Windows 7, putting an end to that operating system’s decade.

To remember that service – a retirement party but without the cloyingly-sweet cake and cheap gold watch – Computerworld selected seven highlights of Windows 7. While the seven do not pretend to trace Windows 7’s history, they illustrate the influence and impact of the OS.

Here’s to Windows 7. Raise a glass, for cryin’ out loud.

It salvaged Microsoft’s reputation after the Vista debacle

The numbers say it all.

Windows Vista, the 2006 replacement for Windows XP, topped out at 20% of all Windows versions in October 2009. Even though the OS it followed was long in the tooth – XP was nearly twice the age of a typical version when it was supplanted – Vista struggled to put a dent in its forerunner’s share.

To read this article in full, please click here

Security Sophos

‘Cable Haunt’ vulnerability exposes 200 million cable modem users

January 14, 2020 0 Comments broadcom, buffer flaws, cable haunt, cable modem, Flaw, lyrebirds, security threats, vulnerability

Credit to Author: John E Dunn| Date: Tue, 14 Jan 2020 11:41:45 +0000

A fortnight in to 2020 and we have the first security flaw to be given its own name: Cable Haunt – complete with eye-catching logo.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/xgn6q9BSap4″ height=”1″ width=”1″ alt=””/>

Security Sophos

Google tests biometric authentication for Android autofill

January 14, 2020 0 Comments Android, autofill, bad passwords, biometrics, Google, Mobile, Operating Systems, password manager, password security

Credit to Author: Danny Bradbury| Date: Tue, 14 Jan 2020 11:31:33 +0000

Google is testing out a feature to make Android’s built-in password manager safer.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/Bv2NtaVOe80″ height=”1″ width=”1″ alt=””/>

Security Sophos

Lottery hacker gets 9 months for his £5 cut of the loot

January 14, 2020 0 Comments anwar batson, automated password guessing, brute force, brute force attack, brute force tool, computer misuse act 1990, cracking, credential stuffing, daniel thompson, dark web, data loss, edwin salter, hacking tool, idris akinwunmi, Law & order, lottery, national lottery, password reuse, Privacy, rosegold, security threats, sentence, sentry mba, stolen credentials, uk, user credentials

Credit to Author: Lisa Vaas| Date: Tue, 14 Jan 2020 11:18:57 +0000

We don’t care how little you made from your crimes, the judge said. We care that you went after an outfit that gives a ton to charities.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/MQxKTz5FL8E” height=”1″ width=”1″ alt=””/>

ComputerWorld Independent

Saying goodbye to Windows 7 isn’t easy, but you must

January 14, 2020 0 Comments Security, Windows

Credit to Author: Steven J. Vaughan-Nichols| Date: Tue, 14 Jan 2020 03:00:00 -0800

Listen, I get it. Windows 7 has worked really well. After the Vista fiasco, you were so happy to get a decent version of Windows. You dodged the Windows 8.x sinkhole, and, boy, were you glad! Then, you thought about Windows 10, but 7 just did the job so you stuck with it, and then you felt vindicated because of Windows 10’s dodgy upgrades and patches. Now, today, Jan. 14, 2020, Windows 7 has reached its end of life, and either you’ve upgraded to Windows 10 or you’re working on another Windows 7 alternative like Chrome OS, macOS or Linux, right?

To read this article in full, please click here

Security Sophos

Microsoft now reviewing Skype audio in ‘secure’ places (not China)

January 14, 2020 0 Comments audio, china, clips, Microsoft, Privacy, privacy policy, skype, voice assistants, voice recognition

Credit to Author: Lisa Vaas| Date: Tue, 14 Jan 2020 10:51:15 +0000

A former contractor in Beijing: “It sounds a bit crazy now […] that they gave me the URL, a username and password sent over email.”<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/MmxOcairoTY” height=”1″ width=”1″ alt=””/>

Independent Krebs Security

Cryptic Rumblings Ahead of First 2020 Patch Tuesday

January 13, 2020 0 Comments anne neuberger, cert coordination center, cert/cc, crypt32.dll, Microsoft, microsoft cryptoapi, National Security Agency, NSA, patch tuesday january 2020, Time to Patch, will dormann, Windows

Credit to Author: BrianKrebs| Date: Mon, 13 Jan 2020 22:17:47 +0000

Sources tell KrebsOnSecurity that Microsoft Corp. is slated to release a software update on Tuesday to fix an extraordinarily serious security vulnerability in a core cryptographic component present in all versions of Windows. Those sources say Microsoft has quietly shipped a patch for the bug to branches of the U.S. military and to other high-value customers/targets that manage key Internet infrastructure, and that those organizations have been asked to sign agreements preventing them from disclosing details of the flaw prior to Jan. 14, the first Patch Tuesday of 2020.

Independent Krebs Security

Phishing for Apples, Bobbing for Links

January 13, 2020 0 Comments apple phishing, Latest Warnings, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Mon, 13 Jan 2020 16:09:58 +0000

Anyone searching for a primer on how to spot clever phishing links need look no further than those targeting customers of Apple, whose brand by many measures has emerged as the most targeted. Past stories here have examined how scammers working with organized gangs try to phish iCloud credentials from Apple customers who have a mobile device that is lost or stolen. Today’s piece looks at the well-crafted links used in some of these lures.

Security Sophos

Facebook prohíbe los deepfakes, pero no los cheapfakes o shallowfakes

January 13, 2020 0 Comments actualidad, facebook, redes sociales

Credit to Author: Naked Security| Date: Mon, 13 Jan 2020 09:06:05 +0000

Facebook ha prohibido algunos vídeos manipulados, pero solo los que están hechos con tecnologías sofisticadas, como la inteligencia artificial (IA), de una manera que una persona normal no detectaría fácilmente. Lo que no prohíben son vídeos hechos con un simple software de edición de vídeo, o lo que los investigadores de la desinformación llaman “cheapfakes” […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/WvWokdzYeSs” height=”1″ width=”1″ alt=””/>