Recent Security News
-
The Fast Evolution of SaaS Security from 2020 to 2024 (Told Through Video)
October 16, 2023 at 08:25AM The text discusses the importance of SaaS security and highlights key findings from the SaaS Security Survey Report. It emphasizes the need for automated configuration and monitoring tools, as well as the critical role of identity and access governance. The risks associated with third-party connected apps are also examined. The…
-
Microsoft Improving Windows Authentication, Disabling NTLM
October 16, 2023 at 08:24AM Microsoft is working on new features for Kerberos to improve Windows authentication security and eliminate the use of the NTLM protocol. The features include Initial and Pass Through Authentication Using Kerberos (IAKerb), which allows authentication through a server in firewall segmented environments or remote access scenarios. The second feature is…
-
Milesight Industrial Router Vulnerability Possibly Exploited in Attacks
October 16, 2023 at 08:24AM Chinese IoT and video surveillance product maker Milesight’s industrial cellular routers have a vulnerability that exposes system log files with passwords for administrators and users. Although the flaw has likely been patched for years, there have been some small-scale exploitation attempts observed. These routers are used in various sectors such…
-
Microsoft fixes Windows 10 security update installation issue
October 16, 2023 at 07:55AM Microsoft has resolved a known issue that caused Windows 10 security updates to fail with 0x8007000d errors. The problem affected Windows 10 21H2 and Windows 10 22H2, and the KB5031356 security update. Microsoft used Known Issue Rollback (KIR) to fix the issue, and the fix should automatically propagate to all…