Google Chrome Switches to ML-KEM for Post-Quantum Cryptography Defense

September 17, 2024 at 08:45AM Google is switching from KYBER to ML-KEM in Chrome to counter cryptographically relevant quantum computers (CRQCs). ML-KEM will be implemented in Chrome version 131 in November 2024, addressing incompatibility issues with KYBER. The move follows NIST’s release of new encryption algorithms for future quantum threats. Microsoft is also gearing up … Read more

Urgent: GitLab Patches Critical Flaw Allowing Unauthorized Pipeline Job Execution

September 12, 2024 at 01:12PM GitLab released security updates addressing 17 vulnerabilities, including a critical flaw (CVE-2024-6678) enabling an attacker to run pipeline jobs as an arbitrary user. This is the fourth flaw patched in the past year. Users are urged to apply the patches immediately. There is no evidence of active exploitation, but caution … Read more

Wix.com to block Russian users starting September 12

September 10, 2024 at 11:25AM Wix.com will cease services for Russian users on September 12, 2024, resulting in the suspension of all Russian accounts, including free and premium, and removal of their websites. Based on the meeting notes, the key takeaway is that Wix.com will cease providing services to Russian users on September 12, 2024. … Read more

Google increases Chrome bug bounty rewards up to $250,000

August 28, 2024 at 01:28PM Google has increased payouts for Google Chrome security flaws through its Vulnerability Reward Program, with the maximum reward for a single bug now over $250,000, more than doubling the previous amount. Based on the meeting notes, it seems that Google has increased its payouts for security flaws reported through its … Read more

French Authorities Arrest Telegram CEO Pavel Durov at a Paris Airport, French Media Report

August 26, 2024 at 09:12AM Telegram’s CEO, Pavel Durov, was detained at a Paris airport on allegations of money laundering and drug trafficking. French authorities issued the arrest warrant, but no official comments were made. Durov’s Telegram faced criticism over content moderating, leading to legal issues in multiple countries. The CEO’s arrest has drawn attention … Read more

Microsoft to rollout Windows Recall to Insiders in October

August 21, 2024 at 03:23PM Microsoft announced the upcoming rollout of its AI-powered Windows Recall feature to Insiders with Copilot+ PCs in October. Based on the meeting notes, it appears that Microsoft will begin the rollout of its AI-powered Windows Recall feature to Insiders with Copilot+ PCs in October. This implementation signifies an advancement in … Read more

China-Backed Earth Baku Expands Cyber Attacks to Europe, Middle East, and Africa

August 14, 2024 at 02:03AM Earth Baku, a China-backed threat actor, has expanded its targeting to Europe, the Middle East, and Africa, including countries like Italy, Germany, U.A.E., and Qatar. The group has updated its tactics, using public-facing applications for entry points and deploying sophisticated malware. Their attacks involve various post-exploitation tools and data exfiltration … Read more

Microsoft is killing the Windows Paint 3D app after 8 years

August 12, 2024 at 03:21PM Microsoft announced the discontinuation and removal of the Paint 3D graphics app from the Microsoft Store in November. Based on the meeting notes, the key takeaway is that Microsoft has announced the discontinuation of the Paint 3D graphics app, which will be removed from the Microsoft Store in November. Full … Read more

Microsoft Azure outage takes down services across North America

August 5, 2024 at 05:08PM Microsoft successfully resolved a two-hour Azure outage that disrupted multiple services in North and Latin America. Based on the meeting notes, the key takeaway is that Microsoft has successfully mitigated an Azure outage that affected multiple services for customers across North and Latin America, lasting more than two hours. Full … Read more

Keytronic reports losses of over $17 million after ransomware attack

August 5, 2024 at 12:54PM Keytronic, an electronic manufacturing services provider, reported losses of over $17 million following a May ransomware attack. Based on the meeting notes, the key takeaway is that Keytronic, an electronic manufacturing services provider, incurred significant losses of over $17 million as a result of a ransomware attack in May. This … Read more