The Hacker News Daily Updates

New "Retbleed" speculative execution attacks.

Views expressed in this cybersecurity-cyber crime update are those of the reporters and correspondents.

Accessed on 13 July 2022, 1516 UTC.

Content provided by email subscription to "The Hacker News Daily Updates."

Source:  https://mail.google.com/mail/u/0/#inbox/FMfcgzGpGwkKBblPhJjZc

Please click link or scroll down to read your selections.

Thanks for joining us today.

Russ Roberts

https://www.hawaiicybersecurityjournal.net

https://paper.li/RussellRoberts (machine learning, artificial intelligence, IoT, and information security)

The Hacker News Daily Updates

SASE for Dummies 2nd Edition SASE for Dummies 2nd edition is here. Understand all the SASE basics, and much more. It’s a concise, 5-chapter, a must-read for IT leaders looking to support their digital business needs today and into the future. Download Now Sponsored

LATEST NEWS Jul 13, 2022

New 'Retbleed' Speculative Execution Attack Affects AMD and Intel CPUs Security researchers have uncovered yet another vulnerability affecting numerous older AMD and Intel microprocessors that could bypass current defenses and result in Spectre-based speculative-execution attacks. Dubbed Retbleed by ETH Zurich researchers Johannes Wikner and Kaveh Razavi, the issues ... Read More

U.S. FTC Vows to Crack Down on illegal Use and Sharing of Citizens' Sensitive Data The U.S. Federal Trade Commission (FTC) warned this week that it will crack down on tech companies' illegal use and sharing of highly sensitive data and false claims about data anonymization. "While many consumers may happily offer their location data in exchange for real-time crowd-sourced advice ... Read More

New UEFI Firmware Vulnerabilities Impact Several Lenovo Notebook Models Consumer electronics maker Lenovo on Tuesday rolled out fixes to contain three security flaws in its UEFI firmware affecting over 70 product models. "The vulnerabilities can be exploited to achieve arbitrary code execution in the early phases of the platform boot, possibly allowing the attackers ... Read More

Microsoft Warns of Large-Scale AiTM Phishing Attacks Against Over 10,000 Organizations Microsoft on Tuesday disclosed that a large-scale phishing campaign targeted over 10,000 organizations since September 2021 by hijacking Office 365's authentication process even on accounts secured with multi-factor authentication (MFA). "The attackers then used the stolen credentials and session ... Read More

5 Questions You Need to Ask About Your Firewall Security Often, organizations think of firewall security as a one-and-done type of solution. They install firewalls, then assume that they are "good to go" without investigating whether or not these solutions are actually protecting their systems in the best way possible. "Set it and forget it!" Instead ... Read More

Active Directory Protection Checklist Use this checklist to evaluate risks and gaps in current Active Directory security procedures Download Now Sponsored