Microsoft Ignite is a free online training event that runs November 15 – 16, 2023. Sessions include business applications, security and new product features. Register online at register.ignite.microsoft.com.
Tag Archives: Security
Microsoft Build Event May 23 to 24 2023
Microsoft will hold its annual technology Build event from May 23 to 24, 2023. Online registration is free; more information is available at the event FAQ page.
Facebook finds malicious Android and iOS apps targeting credentials
Facebook has reported finding more than 400 malicious Android and iOS apps intended to copy Facebook login credentials from users who run these apps. Facebook contacted Apple and Google regarding these apps found in their app stores. A list of the apps may be found here.
IRS will transition away from third party facial recognition identification
Originally the IRS had scheduled users to sign up for ID.me by the summer of 2022. Existing IRS user accounts who had previously signed up without using ID.me will still work for now.
Azure Cosmos DB Jupyter Notebook vulnerability resolved
Microsoft disclosed a potential vulnerability in the Azure Cosmos DB Jupyter Notebook feature. The issue was resolved and no customer data was accessed. The Cybersecurity and Infrastructure Security Agency (CISA) also released a statement regarding this database issue.
Web browsers have removed support for FTP
Major web browsers have removed support for FTP (File Transfer Protocol) for security reasons. This includes:
- Google Chrome version 88
- Firefox version 90
- Microsoft Edge version 88 (FTP still available under Edge IE mode)
FileZilla is an open-source option available for FTP servers.
PrintNightmare security issue resolved with latest Microsoft Windows update
PrintNightmare (CVE-2021-34527 and CVE-2021-36947) is a security vulnerability connected with the Print Spooler service in Windows 10 and Windows Server. This should be corrected by installing the currently available July 2021 Windows Update.
Kaseya VSA security incident
Kaseya has reported that their VSA product has been the victim of a cyberattack. Some VSA customers have reported ransomware related to this issue. The Cybersecurity and Infrastructure Security Agency (CISA) also released instructions regarding this incident for customers of Kaseya VSA.
Dell issues security update for driver file vulnerability
Dell has issued a security update to fix a vulnerability in its driver file dbutil_2_3.sys which runs on Microsoft Windows-based systems. This can be resolved by running Dell Security Advisory Update – DSA-2021-088. More information is available at the update FAQ page.
Dell SupportAssist will display driver, BIOS, and firmware updates that are available for Dell personal PCs and tablets that run Windows. Dell also has other self service update support options.
Apple issues security updates for multiple devices in May 2021
Several security updates were issued for iPhone and other Apple devices on May 3rd and 4th of 2021 to fix WebKit flaws: