Category: Shorts

Google adds passwordless sign-in to Work and Cloud accounts Google has taken a step toward a passwordless future with the launch of an open beta for passkeys on Workspace accounts. Passkeys are a new form of passwordless sign-in technology developed by the FIDO Alliance, whose members include industry giants like Google, Apple, and Microsoft. Starting…

If Apple wants to be successful with its headset, it needs to reinvent the app The whole structure of the app ecosystem is such that the first step of every process is to open an app. It wants to make apps work between and across devices. The Biggest New Idea About Apps might be interactive…

How AI Helps (and Hinders) Your Inbox A broader subset of AI, called machine learning, already performs a kind of safety dance long after you’ve logged off. It also can be used to track the people responsible for phishing attacks. Aparna Pappu remains optimistic about the continued development of better, more refined security protections. On…

FTC fines Amazon $30.8 million for privacy violations involving Alexa and Ring The U.S. Federal Trade Commission has fined Amazon $30.8 million over privacy lapses involving its Alexa assistant and Ring security cameras. It includes a $25 million fine for breaching children’s privacy laws by retaining their Alexa voice recordings for indefinite time periods and…

Cloud Security Tops Concerns for Cybersecurity Leaders: EC-Council’s Certified CIS EC-Council conducts a survey of cybersecurity leaders and finds that cloud security is the top concern for enterprises. They also find that more than 50% of surveyed information security leaders identified cloud security as their top concern. The report further highlights the significant impact of…

Linux ransomware BlackSuit appears to borrow code from Royal Trend Micro has analyzed a new ransomware strain called BlackSuit and found that it has many similarities with another ransomware family, Royal. In fact, they have so many similarities that they’re nearly identical. Trend Micro’s analysis of the Linux variant of the new ransomware finds that…

Zero-day vulnerability being actively exploited in MOVEit Transfer A critical flaw in Progress Software’s MOVEit Transfer managed file transfer application has come under widespread exploitation. The company said it could allow an unauthenticated attacker to gain unauthorized access to the database. According to Huntress and Rapid7, roughly 2,500 instances of MOVEIT Transfer were exposed to…

Kimsuky Group Appears in Targeted Cyber Attacks The U.S. and South Korean intelligence agencies have issued a new warning about North Korean cyber actors’ use of social engineering tactics to strike think tanks, academia, and news media sectors. The goal of the Kimsuky’s cyber programs, the officials said, is to gain illicit access as well…

Camaro Dragon Uses New TinyNote Backdoor for Intelligence Gathering The Chinese nation-stage group known as Camaro Dragon has been linked to yet another backdoor, this one designed to gather intelligence-gathering goals. The company behind the malware, Check Point, said it functions as a first-stage payload capable of basic machine enumeration and command execution via PowerShell…

Judge dismisses DC’s privacy lawsuit against Meta A judge has dismissed a lawsuit accusing Meta of violating privacy laws. The suit had alleged that Meta’s lax privacy policies led to the Cambridge Analytica scandal, as reported earlier by The New York Times. According to the ruling, Judge Ross argues that Meta took a number of…