The Information Highway

The Information Highway

all blog posts are related to technology news.

QR codes bypass browser isolation for malicious C2 communication

Hacker-headpic

Mandiant has identified a novel method to bypass browser isolation technology and achieve command-and-control operations through QR codes.

Continue reading
  138 Hits

Microsoft expands Recall preview to Intel and AMD Copilot+ PCs

windows-11-recall

Microsoft is now testing its AI-powered Recall feature on AMD and Intel-powered Copilot+ PCs enrolled in the Windows 11 Insider program.

Continue reading
  135 Hits

Microsoft says having a TPM is "non-negotiable" for Windows 11

Windows-11-headpic

Microsoft made it abundantly clear this week that Windows 10 users won't be able to upgrade to Windows 11 unless their systems come with TPM 2.0 support, stating it's a "non-negotiable" requirement.

Continue reading
  131 Hits

Microsoft says recent Windows 11 updates break SSH connections

Windows_11_headpic

Microsoft has confirmed that last month's Windows security updates are breaking SSH connections on some Windows 11 22H2 and 23H2 systems.

Continue reading
  307 Hits

D-Link won’t fix critical flaw affecting 60,000 older NAS devices

D-Link-headpic

More than 60,000 D-Link network-attached storage devices that have reached end-of-life are vulnerable to a command injection vulnerability with a publicly available exploit.

Continue reading
  285 Hits

Unpatched Mazda Connect bugs let hackers install persistent malware

headpi_20241109-194606_1

Attackers could exploit several vulnerabilities in the Mazda Connect infotainment unit, present in multiple car models including Mazda 3 (2014-2021), to execute arbitrary code with root permission. 

Continue reading
  313 Hits

Google Cloud to Enforce Multi-Factor Authentication by 2025 for All Users

clou_20241109-185203_1

Google's cloud division has announced that it will enforce mandatory multi-factor authentication (MFA) for all users by the end of 2025 as part of its efforts to improve account security.

Continue reading
  145 Hits

Microsoft shares workaround for Outlook freezes when copying text

Outlook

Microsoft is investigating a known issue that affects Microsoft 365 customers and causes classic Outlook to hang or freeze when copying text.

Continue reading
  176 Hits

Microsoft warns Azure Virtual Desktop users of black screen issues

Azure_Virtual_Desktop

Microsoft warned customers they might experience up to 30 minutes of black screens when logging into Azure Virtual Desktop (AVD) after installing the KB5040525 Windows 10 July 2024 preview update.

Continue reading
  251 Hits

Microsoft delays Windows Recall again, now by December

windows-11-recall

Microsoft is again delaying the rollout of its AI-powered Windows Recall feature after announcing in August that it will be available for Insiders with Copilot+ PCs in October.

Continue reading
  123 Hits

QNAP, Synology, Lexmark devices hacked on Pwn2Own Day 3

pwn2own-ireland

The third day of Pwn2Own Ireland 2024 continued to showcase the expertise of white hat hackers as they exposed 11 zero-day vulnerabilities, adding $124,750 to the total prize pool, which now stands at $874,875.

Continue reading
  228 Hits

Windows 11 24H2 KB5044384 update fixes sfc /scannow corrupt file errors

Windows-11

Microsoft has released the optional KB5044384 preview cumulative update for Windows 11 24H2, which includes twenty-four changes, including a bug that caused the sfc /scannow command to always display corrupt file errors.

Continue reading
  189 Hits

Windows 11 KB5044380 preview update lets you remap the Copilot key

Windows_11_dark_hd_20241026-095239_1

Microsoft has released the optional KB5044380 Preview cumulative update for Windows 11 23H2 and 22H2, which brings seventeen changes, including a new Gamepad keyboard and the ability to remap the Copilot keyboard key.

Continue reading
  224 Hits

Microsoft creates fake Azure tenants to pull phishers into honeypots

Microsoft

Microsoft is using deceptive tactics against phishing actors by spawning realistic-looking honeypot tenants with access to Azure and lure cybercriminals in to collect intelligence about them.

Continue reading
  247 Hits

Intel, AMD CPUs on Linux impacted by newly disclosed Spectre bypass

motherboard-cpu-bios

The latest generations of Intel processors, including Xeon chips, and AMD's older microarchitectures on Linux are vulnerable to new speculative execution attacks that bypass existing 'Spectre' mitigations.

Continue reading
  256 Hits

Amazon says 175 million customer now use passkeys to log in

amazon-logo

Amazon has seen massive adoption of passkeys since the company quietly rolled them out a year ago, announcing today that over 175 million customers use the security feature.

Continue reading
  208 Hits

New FIDO proposal lets you securely move passkeys across platforms

3

The Fast IDentity Online (FIDO) Alliance has published a working draft of a new specification that aims to enable the secure transfer of passkeys between different providers.

Continue reading
  223 Hits

Microsoft deprecates PPTP and L2TP VPN protocols in Windows Server

Windows-Server

Microsoft has officially deprecated the Point-to-Point Tunneling Protocol (PPTP) and Layer 2 Tunneling Protocol (L2TP) in future versions of Windows Server, recommending admins switch to different protocols that offer increased security.

Continue reading
  230 Hits

MoneyGram: No evidence ransomware is behind recent cyberattack

moneygram-sign

Payment platform MoneyGram says there is no evidence that ransomware is behind a recent cyberattack that led to a five-day outage in September. 

Continue reading
  276 Hits

Google removes Kaspersky's antivirus software from Play Store

kaspersky-headpic

 Over the weekend, Google removed Kaspersky's Android security apps from the Google Play store and disabled the Russian company's developer accounts.

Continue reading
  285 Hits

Top Breaches Of 2023

Customers Affected In T-Mobile Breach
Accounts Affected In MOVEit Breach
Customers Affected In MCNA Insurance Data Breach
Individuals Affected In PharMerica Data Breach
Users Affected In ChatGPT Major Data Breach
*Founder Shield End of Year 2023