Security tools – Page 4 – WindowsTechs.com

You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results

Posted on April 29, 2022 by BrianKrebs

Google said this week it is expanding the types of data people can ask to have removed from search results, to include personal contact information like your phone number, email address or physical address. The move comes just months after Google rolled out a new policy enabling people under the age of 18 (or a parent/guardian) to request removal of their images from Google search results. Continue reading You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results→

Microsoft Patch Tuesday, April 2022 Edition

Posted on April 13, 2022 by BrianKrebs

Microsoft on Tuesday released updates to fix roughly 120 security vulnerabilities in its Windows operating systems and other software. Two of the flaws have been publicly detailed prior to this week, and one is already seeing active exploitation, according to a report from the U.S. National Security Agency (NSA). Continue reading Microsoft Patch Tuesday, April 2022 Edition→

Microsoft Patch Tuesday, November 2021 Edition

Posted on November 9, 2021 by BrianKrebs

Microsoft Corp. today released updates to quash at least 55 security bugs in its Windows operating systems and other software. Two of the patches address vulnerabilities that are already being used in active attacks online, and four of the flaws were disclosed publicly before today — potentially giving adversaries a head start in figuring out how to exploit them. Continue reading Microsoft Patch Tuesday, November 2021 Edition→

The Rise of One-Time Password Interception Bots

Posted on September 29, 2021 by BrianKrebs

In February, KrebsOnSecurity wrote about a novel cybercrime service that helped attackers intercept the one-time passwords (OTPs) that many websites require as a second authentication factor in addition to passwords. That service quickly went offline, but new research reveals a number of competitors have since launched bot-based services that make it relatively easy for crooks to phish OTPs from targets. Continue reading The Rise of One-Time Password Interception Bots→

Does Your Organization Have a Security.txt File?

Posted on September 20, 2021 by BrianKrebs

It happens all the time: Organizations get hacked because there isn’t an obvious way for security researchers to let them know about security vulnerabilities or data leaks. Or maybe it isn’t entirely clear who should get the report when remote access to an organization’s internal network is being sold in the cybercrime underground.

In a bid to minimize these scenarios, a growing number of major companies are adopting “Security.txt,” a proposed new Internet standard that helps organizations describe their vulnerability disclosure practices and preferences. Continue reading Does Your Organization Have a Security.txt File?→

Microsoft Patch Tuesday, July 2021 Edition

Posted on July 13, 2021 by BrianKrebs

Microsoft today released updates to patch at least 116 security holes in its Windows operating systems and related software. A half of dozen of the vulnerabilities addressed today are under active attack, according to Microsoft. Continue reading Microsoft Patch Tuesday, July 2021 Edition→

Microsoft Issues Emergency Patch for Windows Flaw

Posted on July 7, 2021 by BrianKrebs

Microsoft on Tuesday issued an emergency software update to quash a security bug that’s been dubbed “PrintNightmare,” a critical vulnerability in all supported versions of Windows that is actively being exploited. The fix comes a week ahead of Microsoft’s normal monthly Patch Tuesday release, and follows the publishing of exploit code showing would-be attackers how to leverage the flaw to break into Windows computers. Continue reading Microsoft Issues Emergency Patch for Windows Flaw→

To guard against data loss and misuse, the cybersecurity conversation must evolve

Posted on July 1, 2021 by Ram Iyer

People — not applications, networks or endpoints — have become the primary security perimeter in today’s cloud-first, choose-the-handiest-device, collaboration-obsessed world. Continue reading To guard against data loss and misuse, the cybersecurity conversation must evolve→

Survey: Nearly Half of Manufacturers Suffered a Digital Attack in the Last Year

Posted on June 21, 2021 by Dean Ferrando

Confidence isn’t new when it comes to cybersecurity. All the way back in 2015, for example, 86% of security professionals working in the energy sector told Tripwire that they were confident they could detect a breach in a week. Just less than half (49%… Continue reading Survey: Nearly Half of Manufacturers Suffered a Digital Attack in the Last Year→

Recycle Your Phone, Sure, But Maybe Not Your Number

Posted on May 19, 2021 by BrianKrebs

Many online services allow users to reset their passwords by clicking a link sent via SMS, and this unfortunately widespread practice has turned mobile phone numbers into de facto identity documents. Which means losing control over one thanks to a divorce, job termination or financial crisis can be devastating.

Even so, plenty of people willingly abandon a mobile number without considering the potential fallout to their digital identities when those digits invariably get reassigned to someone else. New research shows how fraudsters can abuse wireless provider websites to identify available, recycled mobile numbers that allow password resets at a range of email providers and financial services online. Continue reading Recycle Your Phone, Sure, But Maybe Not Your Number→