Recent Security News
-
Typosquatting Wave Shows No Signs of Abating
March 11, 2024 at 05:26PM The practice of typosquatting involves using look-alike websites and domain names to deceive users, often relying on human errors to capture victims. Attackers are continuously improving their tactics, making it difficult to detect these fraudulent domains and messages. Various industries have fallen victim to typosquatting, prompting experts to emphasize the…
-
Microsoft says Windows 10 21H2 support is ending in June
March 11, 2024 at 05:00PM Microsoft will end support for Windows 10 21H2 in June 2024, including Enterprise, Education, and IoT editions. Users are encouraged to update to the latest Windows 10 version or transition to Windows 11 to avoid security vulnerabilities. The Windows 10 2022 Update is rolling out, with automatic installation for eligible…
-
4 Security Tips From PCI DSS 4.0 Anyone Can Use
March 11, 2024 at 04:36PM Compliance is crucial for security professionals, with many standards evolving to resemble security best practices. PCI DSS 4.0, applicable to all businesses accepting credit card payments, introduces new requirements such as preventing malicious scripts, enhancing network security controls, securing systems and software, and ensuring robust logging and monitoring. These updates…
-
Okta says data leaked on hacking forum not from its systems
March 11, 2024 at 04:17PM Okta denies leaked company data from October 2023 cyberattack. The breach impacted customer support system users, including stolen credentials allowing attackers to access cookies and authentication. A threat actor claimed to release an Okta Database containing 3,800 customer records. Okta confirms the data does not belong to them, likely from…
-
Researchers expose Microsoft SCCM misconfigs usable in cyberattacks
March 11, 2024 at 03:19PM Security researchers have launched Misconfiguration Manager, a resource aimed at identifying and addressing attack techniques based on misconfigurations of Microsoft’s Configuration Manager (MCM)/System Center Configuration Manager (SCCM). The repository provides insights and defense strategies, highlighting 22 attack methods along with prevention, detection, and deception-based defense actions. Administrators are urged to…