Many websites now use a content management system (CMS) for backend management. You don’t need to know any coding — such as HTML or CSS — to build or operate a website these days. WordPress is one of the most popular options around, according to W3Techs More

Apple has released a fix for a bug that affects iPhones, iPads and MacBooks and which could lead to ‘arbitrary code execution’ by visiting a website hosting malicious code. 

Like many bugs, this one is a memory related bug and it affects WebKit, the browser engine behind Safari on iPhones and MacBooks. Apple delivered the security fix in macOS Big Sur 11.2.3 and iOS 14.4.1 and iPadOS 14.4.1. 
In typical fashion, Apple hasn’t released much information about the bug but notes that the issue means its browser is vulnerable to processing maliciously crafted web content that “may lead to arbitrary code execution”.
SEE: Top 10 iPad tips (free PDF) (TechRepublic)
The bug, tracked as CVE-2021-1844, was discovered by Clément Lecigne from Google’s Threat Analysis Group and Alison Huffman from Microsoft’s browser vulnerability research group. 
Apple doesn’t say whether the bug was being exploited before the update. Both security researchers are noteworthy. 
Huffman discovered a flaw in Google’s Chrome browser that was being exploited before Google released a patch. That bug, CVE-2021-21166, was addressed in the release of the Chrome 89 stable channel for desktop on Windows, Mac, and Linux last week. Lecigne found two critical iPhone bugs that were being exploited in 2019.   

The iOS updates are available for the iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch (7th generation).
iOS 14.4.1 is available now worldwide and contains a 138MB update. “This update provides important security updates and is recommended for all users,” Apple notes. iPhone owners can go to the Settings app and check for software updates to get the patch. It’s always easy to install but, as usual, the process takes a few minutes while the device prepares the update and then users will need to wait for the device to restart.  More

YouTube has temporarily suspended OANN for promoting a fake COVID-19 cure on its channel. 

A spokesperson for the video platform told Axios on Tuesday that One America News Network (OANN), a conservative news outlet, will not be able to post any new content on its YouTube channel for a week — and is also no longer able to monetize video content.
The one-week ban is considered a ‘strike’ under YouTube’s COVID-19 misinformation policy. 
See also: GitHub reinstates youtube-dl library after EFF intervention
The policy was implemented by Google in an attempt to stem a wave of fake news across social media and video services at the time of the first coronavirus outbreak, including fake COVID-19 cures and treatments, conspiracy theories concerning the origin of the virus, and stories claiming COVID-19 is a bioweapon. 
YouTube removes content deemed to “pose a serious risk of egregious harm,” including videos peddling COVID-19 prevention, treatment, diagnoses, and transmission information that contradicts the World Health Organization (WHO) and local healthcare authorities.
The company has provided examples of content that violates these policies, including:
Claims that COVID-19 doesn’t exist or that people do not die from it 
Content that encourages the use of home remedies in place of medical treatment 
Other content that discourages people from consulting a medical professional or seeking medical advice
Content that claims that any group or individual has immunity to the virus or cannot transmit the virus

The first time a YouTube channel goes against YouTube’s stance on COVID-19 content, the company will send an emailed warning. Afterward, YouTube will ‘strike’ a channel up to three times to bring the message home, before deleting a repeat offender’s channel entirely.  
CNET: Debunking the election’s most widespread voter fraud claims
OANN’s video claimed there was a guaranteed cure, and this content has now been taken down by YouTube. 
According to Axios, the outlet has also been suspended from the YouTube Partner Program, which allows content creators to monetize their videos through adverts. In order to rejoin and monetize content in the future, OANN will have to reapply.
“After careful review, we removed a video from OANN and issued a strike on the channel for violating our COVID-19 misinformation policy, which prohibits content claiming there’s a guaranteed cure,” YouTube spokesperson Ivy Choi said. 
The suspension comes at the same time US Senator Bob Menendez, together with Democrat colleagues, wrote and published a letter to YouTube, urging the company to take a stronger stance against election misinformation. 
TechRepublic: Baidu Android apps caught leaking sensitive data from devices
The letter, sent to YouTube CEO Susan Wojcicki, asks for “aggressive steps” to be taken to prevent election outcome misinformation from spreading across the platform — ahead of upcoming Georgia run-off elections — and says that “YouTube and its industry peers must take responsibility and immediately stop the spread of misinformation and manipulated media on their platforms.”
Previous and related coverage
Have a tip? Get in touch securely via WhatsApp | Signal at +447713 025 499, or over at Keybase: charlie0 More

Kayla Solino/ZDNETFollow ZDNET: Add us as a preferred source More

A ransomware campaign has returned with a new trick to fool the unwary into compromising their network with file-encrypting malware. And it’s an attack which many Windows machines won’t even recognise as potentially malicious. The new variant of Paradise ransomware – which has been active in one form or another since 2017 – spreads via […] More