Security News > 2020

Google announced on Wednesday that it has simplified the enrollment process for its Advanced Protection Program and it now allows users to activate a security key on their iPhone. Google's Advanced Protection Program is designed to help high-risk users add an extra layer of protection to their account through the use of security keys.

You'll be surprised at how many devices, apps, and services are associated with your Firefox cloud account. Thing is, those devices and apps can add up-until your Firefox cloud account could become a security risk.

Build according to plan: One of the best ways to stay on top of security weak spots within the enterprise is to know where all spots are located within the enterprise. If security is left in the dark, the weak spots will still be there, only unknown to security and thus unmitigated.

Passwordless multi-factor authentication technology provider Trusona this week announced it has raised $20 million as part of a Series C funding round led by Georgian Partners. Trusona's passwordless multi-factor authentication technology allows organizations to mitigate the risks associated with compromised credentials, while making it easy to log in to any platform courtesy of a seamless UI. In addition to Georgian Partners, the new funding round saw participation from existing investors Kleiner Perkins, Microsoft Ventures, OurCrowd, and Seven Peaks Ventures.

No date has yet to even be penciled in for answering a question which, while it lacks the scale of Brexit, will nevertheless also help shape the future of Britain's national security: Whether the country will allow Chinese vendors, including Huawei and ZTE, to be part of its 5G rollout. The U.S. National Security Agency's Rob Joyce, the senior cybersecurity strategy adviser to the director of the agency, said last April that any member of the Five Eyes intelligence-sharing alliance - comprising Australia, Canada, New Zealand, the U.K. and U.S. - that chose to use Huawei or other Chinese vendors might no longer be trusted to receive the most sensitive intelligence.

The threat actor or group behind the Satan ransomware - and probably DBGer and Lucky and possibly Iron - seems to be engaged in a new version or evolution of Satan: 5ss5c. There are several clues within 5ss5c linking the ransomware to Satan.

President Donald Trump has weighed in on Apple's decision not to help the FBI unlock iPhones of the suspect in a shooting in Florida, slamming the company in a Tweet that demands Apple "Step up to the plate and help our great Country." "We are helping Apple all of the time on TRADE and so many other issues, and yet they refuse to unlock phones used by killers, drug dealers and other violent criminal elements," Trump wrote.

Designed to exploit a vulnerability in Windows 10 and Windows Server 2016 and 2019, the bug could allow an attacker to remotely access and control an infected computer. Microsoft has responded to a Windows security bug discovered and reported by the National Security Agency by issuing a patch now available as an "Important" update for affected Windows computers.

A new report recommends that corporate boards answer four key questions on a regular basis to guide cybersecurity governance. Board members said cybersecurity is an existential risk for businesses and they want to understand the issue because problems are growing faster than they are being solved.

VMware on Tuesday advised customers using VMware Tools version 10 for Windows to update their installations to version 11 due to a local privilege escalation vulnerability. According to the virtualization giant, the repair operation in VMware Tools 10.x.y is affected by a race condition that allows an attacker who has access to the guest virtual machine to escalate their privileges.