ComputerWorld – Page 16 – PossibleThreat Articles

NSO Group returns with triple iOS 15/16 zero-click spyware attack

April 18, 2023 0 Comments Apple, iOS, Mobile, Security, small and medium business

No matter what US President Joseph R. Biden Jr. said, NSO Group is still around; the privatized spying service produced zero-click exploits against iOS 15 and iOS 16 last year, according to the latest report from Citizen Lab.

It also suggests Lockdown Mode is effective against such attacks.

A trio of exploits used in complex form

The report reflects what Citizen Lab learned from investigating attacks against Mexican human rights defenders. The researchers conclude that NSO Group, called “mercenary hackers” by Apple, has made wide use of at least three zero-click exploits in Apple’s iPhone operating systems against civil society targets worldwide. NSO Group is the infamous firm that created the Pegasus tool used to spy on people.

To read this article in full, please click here

ComputerWorld Independent

Google urges users to update Chrome to address zero-day vulnerability

April 17, 2023 0 Comments browser security, chrome, zero-day vulnerability

Credit to Author: avenkat@idg.com| Date: Mon, 17 Apr 2023 08:43:00 -0700

Google has released Chrome version 112.0.5615.121 to address a vulnerability that can allow malicious code execution on Windows, Mac, and Linux systems.

ComputerWorld Independent

Patch now to address a Windows zero-day

April 14, 2023 0 Comments Microsoft, Microsoft Office, Security, small and medium business, Windows

Microsoft has addressed 97 existing vulnerabilities this April Patch Tuesday, with a further eight previously released patches updated and re-released. There have been reports of a vulnerability (CVE-2023-28252) exploited in the wild, making it a “Patch Now” release.

This update cycle affects Windows desktops, Microsoft Office, and Adobe Reader. No updates for Microsoft Exchange this month. The team at Application Readiness has provided a helpful infographic that outlines the risks associated with each of the updates for this April update cycle.

To read this article in full, please click here

ComputerWorld Independent

EU privacy regulators to create task force to investigate ChatGPT

April 14, 2023 0 Comments Artificial intelligence, Data privacy, regulation

The European Data Protection Board (EDPB) plans to launch a dedicated task force to investigate ChatGPT after a number of European privacy watchdogs raised concerns about whether the technology is compliant with the EU’s General Data Protection Regulation (GDPR).

Europe’s national privacy regulators said on Thursday that the decision came following discussions about recent enforcement action undertaken by the Italian data protection authority against OpenAI regarding its ChatGPT service.

To read this article in full, please click here

ComputerWorld Independent

EU privacy regulators to create taskforce to investigate ChatGPT

April 14, 2023 0 Comments Artificial intelligence, Data privacy, regulation

To read this article in full, please click here

ComputerWorld Independent

Stolen ChatGPT premium accounts up for sale on the dark web

April 14, 2023 0 Comments chatbots, Cybercrime, identity theft

Credit to Author: avenkat@idg.com| Date: Fri, 14 Apr 2023 06:02:00 -0700

There has been an increase in discussions and trades related to ChatGPT on the dark web since March, according to Check Point.

ComputerWorld Independent

Cisco to offer Webex air-gapped cloud system for security, defense work

April 13, 2023 0 Comments collaboration software, Compliance, Network security, small and medium business

Building on its WebEx product line, Cisco plans to deliver an air-gapped, cloud-based collaboration system for companies involved in US national security and defense work, extending the secure offerings the company already provides to industries that require collaboration tools with strong security measures to meet US government requirements.

Beginning in 2024, the new Webex system — Air-Gapped Trusted Cloud — will provide an added layer of security for teams collaborating through the Webex App, Cisco said.

An air gap is a security measure that involves isolating a computer or network and preventing it from establishing an external connection. For example, an air-gapped computer is unable to connect to the internet or any other communications networks so as to have complete security with the information that resides within it.

To read this article in full, please click here

ComputerWorld Independent

Yet more digital spies targeting iPhones exposed by security researchers

April 12, 2023 0 Comments Android, Apple, iPhone, Mobile, Security, small and medium business

Just weeks after President Biden signed an executive order designed to prevent the US government from purchasing commercial spyware used to subvert democracies, researchers have identified yet another shameful zero-click, zero-day exploit that targeted iPhone users. This spy-for-hire ‘solution’ was sold by an Israeli firm called QuaDream.

Making everyone less safe

QuaDream’s attacks have been exposed by security researchers at Microsoft and Citizen Lab. QuaDream is a more secretive entity than NSO Group but shares much of the same pedigree, including being founded by ex-NSO Group employees and having connections to Israeli intelligence. Its attacks were first exposed last year, but the researchers have since found more about how these digital mercenaries worked.

To read this article in full, please click here

ComputerWorld Independent

Tech bigwigs: Hit the brakes on AI rollouts

April 10, 2023 0 Comments Artificial intelligence, chatbots, Emerging Technology, Google, Microsoft, Privacy, Security

More than 1,100 technology luminaries, leaders, and scientists have issued a warning against labs performing large-scale experiments with artificial intelligence (AI) more powerful than ChatGPT, saying the technology poses a grave threat to humanity.

In an open letter published by Future of Life Institute, a nonprofit organization with the mission to reduce global catastrophic and existential risks to humanity, Apple co-founder Steve Wozniak and SpaceX and Tesla CEO Elon Musk joined other signatories in agreeing AI poses “profound risks to society and humanity, as shown by extensive research and acknowledged by top AI labs.”

To read this article in full, please click here

ComputerWorld Independent

Still using Windows 10 21H2? Time to upgrade

April 10, 2023 0 Comments Security, small and medium business, Windows, Windows 10

So you have a Windows 10 computer — or a fleet of them. But which exact version of Windows 10? If you are on Windows 10, version 21H2, its end of servicing is coming up on June 13, 2023. For Windows 10 Home, Windows 10 Pro, Windows 10 Pro Education, and Windows 10 Pro for Workstations, version 21H2 will stop being offered updates — including security updates — after June. (For Windows 10 Enterprise and Windows 10 Education customers, support for 21H2 lasts another year.)

Why should you upgrade to a new feature release if your existing machines are working just fine? As Windows 10 comes into its final years of support (through to 2025), it’s key to keep machines on supported versions so you can receive security updates. Take the time to review the machines under your control and ensure that they are ready for the end of 21H2 support.

To read this article in full, please click here