Recent Security News
-
Microsoft Improving Windows Authentication, Disabling NTLM
October 16, 2023 at 08:24AM Microsoft is working on new features for Kerberos to improve Windows authentication security and eliminate the use of the NTLM protocol. The features include Initial and Pass Through Authentication Using Kerberos (IAKerb), which allows authentication through a server in firewall segmented environments or remote access scenarios. The second feature is…
-
Milesight Industrial Router Vulnerability Possibly Exploited in Attacks
October 16, 2023 at 08:24AM Chinese IoT and video surveillance product maker Milesight’s industrial cellular routers have a vulnerability that exposes system log files with passwords for administrators and users. Although the flaw has likely been patched for years, there have been some small-scale exploitation attempts observed. These routers are used in various sectors such…
-
Microsoft fixes Windows 10 security update installation issue
October 16, 2023 at 07:55AM Microsoft has resolved a known issue that caused Windows 10 security updates to fail with 0x8007000d errors. The problem affected Windows 10 21H2 and Windows 10 22H2, and the KB5031356 security update. Microsoft used Known Issue Rollback (KIR) to fix the issue, and the fix should automatically propagate to all…
-
Signal Debunks Zero-Day Vulnerability Reports, Finds No Evidence
October 16, 2023 at 06:30AM Messaging app Signal denies the existence of a zero-day flaw in its software, stating that it found no evidence to support the claim. The company has checked with the U.S. government and is urging users with legitimate information to report it. As a precaution, users have been advised to disable…