Recent Security News
-
Emirates CISOs Flag Rampant Cybersecurity Gaps
December 1, 2023 at 12:34PM 96% of UAE security chiefs acknowledge the need for team, process, and technological enhancements to address cyberattacks. Over half feel they lack necessary technical knowledge, while many are hindered by manual processes and disconnected security controls. Investing in cybersecurity is essential, as recovery often exceeds prevention costs. Meeting Takeaways: 1.…
-
LogoFAIL attack can install UEFI bootkits through bootup logos
December 1, 2023 at 12:19PM Security researchers uncovered LogoFAIL vulnerabilities in UEFI firmware’s image parsers that can be exploited to deliver bootkits and bypass security during boot, affecting a wide range of devices across x86 and ARM architectures. Many consumer and enterprise devices from major manufacturers and UEFI vendors could be vulnerable, threatening boot process…
-
Windows 10 KB5032278 update adds Copilot AI assistant, fixes 13 bugs
December 1, 2023 at 12:12PM Microsoft is expanding its Copilot AI assistant to Windows 10 via update KB5032278 for version 22H2, previously tested with Windows Insiders. Initially available on Windows 11, Copilot is releasing in select global markets and requires horizontally positioned taskbars. The update includes 18 fixes/improvements, but December’s preview will be skipped due…
-
LogoFAIL bugs in UEFI code allow planting bootkits via images
December 1, 2023 at 11:26AM LogoFAIL vulnerabilities, found within UEFI code’s image-parsing components, could let attackers hijack the boot process and deliver bootkits on various devices using ESP image file injection. Hundreds of devices across major vendors and architectures are at risk, with the full impact yet to be determined. Meeting Takeaways: 1. LogoFAIL refers…