Subterms
iStockphoto/Getty Images I use a password manager on my PC and mobile devices. For me, it’s still the best way, and really the only way, to juggle all the unique and complex passwords for my online accounts. I’d advise all website users to adopt a password manager for the same purpose. But if you don’t […] More
Does it actually work? Andrzej Wojcicki/Getty Images It’s easy to feel disturbed these days, even if you’re still working from home. more Technically Incorrect The notifications are constant. The pings ring in your ears, leaving a nasty echo. And then there’s the spying. When the pandemic struck, companies worried that they couldn’t observe their employees […] More
iStockphoto/Getty Images Jit, a startup programming security company, dreams of being a top security power. To help make those dreams a reality, Jit recently hired Simon Bennetts, the founder of the world’s most popular web app security scanner, Open Web Application Security Project (OWASP) Zed Attack Proxy (ZAP). Simon Bennetts At Jit, Bennetts will continue […] More
Amazon Echo Dot (third-gen) Amazon I’m a product guy. Way back in the day I was actually a product marketing executive for a big tech company. I’ve shipped hundreds of products over the years. You always try to marry a need with a solution. Meet enough folks’ needs, and they’ll buy your product. Generally, though, […] More
Getty Images The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued an advisory explaining how to thwart cyberattacks on operational technology (OT) and industrial control system (ICS) assets. The new joint advisory outlines what critical infrastructure operators should know about their opponents, citing recent cyber attacks on Ukraine’s energy […] More
Image: Getty Images/iStockphoto Microsoft has exposed a crafty case of OAuth app abuse that allowed the attackers to reconfigure the victim’s Exchange server to send spam. The point of the elaborate attack was to make mass spam – promoting a fake sweepstake – look like it originated from the compromised Exchange domain rather […] More
Wright Studio/Shutterstock There are many Linux distributions designed expressly for containers. Even Microsoft has one, Common Base Linux (CBL)-Mariner. Others include Alpine Linux, Flatcar Container Linux, Red Hat Enterprise Linux CoreOS (RHCOS), and RancherOS. Now Chainguard, a cloud-native software security company, has a new take on this popular cloud-friendly kind of Linux: Wolfi, an “undistribution.” […] More
Image: Getty Images/Maskot Microsoft has introduced a new default to shield Windows 11 machines against password attacks which ought to make them “a very unattractive target” for hackers trying to steal credentials. The latest preview of Windows 11 ships with the SMB server authentication rate limiter on by default, making it much more time-consuming for […] More
