The Information Highway

The Information Highway

Canada orders TikTok to shut down over national risk concerns

TikTok

The Canadian government has ordered the dissolution of TikTok Technology Canada following a multi-step review that provided information and evidence of the social media company posing a national risk. 

Continue reading
  124 Hits

Google Cloud to Enforce Multi-Factor Authentication by 2025 for All Users

clou_20241109-185203_1

Google's cloud division has announced that it will enforce mandatory multi-factor authentication (MFA) for all users by the end of 2025 as part of its efforts to improve account security.

Continue reading
  145 Hits

Microsoft warns it lost some customer's security logs for a month

microsoft-red-header

Microsoft is warning enterprise customers that, for almost a month, a bug caused critical logs to be partially lost, putting at risk companies that rely on this data to detect unauthorized activity.

Continue reading
  208 Hits

Mozilla accused of tracking users in Firefox without consent

Mozilla--logo

European digital rights group NOYB (None Of Your Business) has filed a privacy complaint with the Austrian data protection watchdog (DSB) against Mozilla, alleging the company uses a Firefox privacy feature (enabled without consent) to track users' online behavior. 

Continue reading
  262 Hits

US sanctions 12 Kaspersky Lab execs for working in Russian tech sector

Kaspersky

The Treasury Department's Office of Foreign Assets Control (OFAC) has sanctioned twelve Kaspersky Lab executives for operating in the technology sector of Russia.

Continue reading
  462 Hits

SEC: Financial orgs have 30 days to send data breach notifications

sec-red-flar_20240519-185154_1

The Securities and Exchange Commission (SEC) has adopted amendments to Regulation S-P that require certain financial institutions to disclose data breach incidents to impacted individuals within 30 days of discovery.

Continue reading
  510 Hits

Norway recommends replacing SSL VPN to prevent breaches

global-pew-pe_20240519-183959_1

The Norwegian National Cyber Security Centre (NCSC) recommends replacing SSLVPN/WebVPN solutions with alternatives due to the repeated exploitation of related vulnerabilities in edge network devices to breach corporate networks. 

Continue reading
  652 Hits

Former AT&T customers get $6.3 million in data throttling refunds

AT-T

The Federal Trade Commission (FTC) is sending out $6,300,000 in partial refunds to 267,000 former AT&T Wireless customers as part of a data throttling settlement in 2019.

Continue reading
  674 Hits

New executive order bans mass sale of personal data to China, Russia

Joe_Biden

U.S. President Joe Biden has signed an executive order that aims to ban the bulk sale and transfer of Americans' private data to "countries of concern" such as China, Russia, Iran, North Korea, Cuba, and Venezuela.

Continue reading
  655 Hits

FTC sues H&R Block over deceptive 'free' online filing ads

H-R-Bloc_20240225-193859_1

The U.S. Federal Trade Commission (FTC) sued tax preparation giant H&R Block over the company's deceptive "free" online filing advertising and for pressuring people into overpaying for its services.

Continue reading
  824 Hits

Microsoft says it fixed a Windows Metadata server issue that’s still broken

Windows

Microsoft claims to have fixed Windows Metadata connection issues which continue to plague customers, causing problems for users trying to manage their printers and other hardware.


Continue reading
  857 Hits

iPhone apps abuse iOS push notifications to collect user data

iphone

Numerous iOS apps are using background processes triggered by push notifications to collect user data about devices, potentially allowing the creation of fingerprinting profiles used for tracking.


Continue reading
  765 Hits

Google Pixel phones unusable after January 2024 system update

google-pixel-7

Google Pixel smartphone owners report problems after installing the January 2024 Google Play system update, being unable to access their devices internal storage, open the camera, take screenshots, or even open apps.


Continue reading
  689 Hits

Steam drops support for Windows 7 and 8.1 to boost security

steam-brighter

Steam is no longer supported on Windows 7, Windows 8, and Windows 8.1 as of January 1, with the company recommending users upgrade to a newer operating system.


Continue reading
  827 Hits

iPhone Triangulation attack abused undocumented hardware feature

apple_triangl_20240101-180232_1

 The Operation Triangulation spyware attacks targeting iPhone devices since 2019 leveraged undocumented features in Apple chips to bypass hardware-based security protections.

Continue reading
  899 Hits

CISA urges tech manufacturers to stop using default passwords

0_CISA

Today, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) urged technology manufacturers to stop providing software and devices with default passwords. 

Continue reading
  951 Hits

Microsoft to let Windows 10 home users buy Extended Security Updates

Windows-attack

Microsoft says that all Windows 10 customers (including home users) will be able to pay for three extra years of security updates through the company's Extended Security Updates (ESU) program after the end of support (EOS) date. 

Continue reading
  816 Hits

US Health Dept urges hospitals to patch critical Citrix Bleed bug

Citrix_Bleed

The U.S. Department of Health and Human Services (HHS) warned hospitals this week to patch the critical 'Citrix Bleed' Netscaler vulnerability actively exploited in attacks. 

Continue reading
  851 Hits

Apple fixes two new iOS zero-days in emergency updates

apple_triangle

Apple released emergency security updates to fix two zero-day vulnerabilities exploited in attacks and impacting iPhone, iPad, and Mac devices, reaching 20 zero-days patched since the start of the year. 

Continue reading
  1093 Hits

Windows Hello auth bypassed on Microsoft, Dell, Lenovo laptops

Laptop_finger_print

Security researchers bypassed Windows Hello fingerprint authentication on Dell Inspiron, Lenovo ThinkPad, and Microsoft Surface Pro X laptops in attacks exploiting security flaws found in the embedded fingerprint sensors. 

Continue reading
  931 Hits

Top Breaches Of 2023

Customers Affected In T-Mobile Breach
Accounts Affected In MOVEit Breach
Customers Affected In MCNA Insurance Data Breach
Individuals Affected In PharMerica Data Breach
Users Affected In ChatGPT Major Data Breach
*Founder Shield End of Year 2023