Recent Security News
-
Chinese ‘connected’ cars are a national security threat, says Biden
February 29, 2024 at 02:08PM Biden’s administration is concerned about national security threats from Chinese-made “connected” vehicles due to data collection and potential foreign access. The Department of Commerce is initiating an investigation and proposed rulemaking to address these risks. China’s burgeoning automobile industry is raising concerns about competition and national security in the US.…
-
Windows 11 KB5034848 preview update adds USB 80Gbps support
February 29, 2024 at 02:07PM Microsoft has released the optional KB5034848 Preview cumulative update for Windows 11 23H2 and 22H2, providing new features and fixes, including USB 80Gbps and changes to gaming installations and printer alignment. This update lets users test upcoming features and fixes prior to their official release. It can be installed manually…
-
GitHub enables push protection by default to stop secrets leak
February 29, 2024 at 01:59PM GitHub has introduced push protection by default for all public repositories, preventing accidental exposure of secrets like access tokens and API keys during code pushes. The feature scans for over 200 token types and patterns from 180+ providers and allows users to remove or bypass detected secrets. Push protection is…
-
Threat Actors Exploit Multiple Vulnerabilities in Ivanti Connect Secure and Policy Secure Gateways
February 29, 2024 at 01:35PM The Cybersecurity and Infrastructure Security Agency (CISA) and its partners have issued a joint Cybersecurity Advisory to warn about cyber threat actors exploiting vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure gateways. Threat actors can bypass authentication, craft malicious requests, and execute arbitrary commands with elevated privileges. Organizations are…
-
Citrix, Sophos software impacted by 2024 leap year bugs
February 29, 2024 at 01:30PM Citrix and Sophos products were affected by leap year flaws, leading to unexpected errors for users. Citrix’s HDX HTML5 Video Redirection Service stopped working on all Virtual Delivery Agent machines, prompting a manual date change fix. Sophos also announced problems with security certification validation on HTTPS websites if devices were…