Security News > 2021 > June

Mozilla has a new privacy-focused data sharing platform that provides users with increased control of their data and also allows them to contribute to a better Internet. Built in collaboration with Princeton University researchers, the new Mozilla Rally allows users to select who they want to share their browsing data with, the browser maker says.

NVIDIA gaming graphics software called GeForce Experience, bundled with the chipmaker's popular GTX GPU, is flawed and opens the door to a remote attacker that can exploit the bug to steal or manipulate data on a vulnerable Windows computer. NVIDIA notified customers late last week of the bug and released a software patch for the flaw, which is present in its GeForce Experience Windows software.

Microsoft on Friday admitted it had signed malicious third-party driver code submitted for certification through its Windows Hardware Compatibility Program. According to Microsoft, the miscreant behind the subverted driver was focused on computer game players in China, and is not the sort of nation-state-backed group that has been giving Microsoft and its enterprise customers headaches over the past few months.

New survey finds that the attack also motivated more information sharing within the industry and improved supply chain security. The good news is that security teams are beefing up network defenses, but the bad news is that most companies have recently suffered a cybersecurity incident that required a board meeting.

The same group behind the SolarWinds supply-chain attacks has been targeting Microsoft's corporate networks to gain access to specific organizations - primarily, U.S.-based IT and government organizations. Microsoft officially announced the attacks after Reuters obtained an email sent to customers which explained that the threat group Nobelium stole customer-service-agent credentials to gain access and launch attacks against Microsoft customers.

At least two ransomware gangs in need of hackers to run the attacks have been using their sites to advertise features of their encryption tools to attract new recruits. About a week ago, LockBit ransomware gang announced a new major version for their tool, claiming significant improvement for the encryption speed.

The first Windows 11 preview build has been released, and users are reporting being unable to install it for not meeting minimum system requirements. Last week, Microsoft announced that Windows 11 is their next version of Windows and that Windows Insiders would get their first chance of testing the preview builds this week.

Using iCloud Private Relay in iOS 15, you can easily obscure your internet traffic and ensure that network providers cannot spy on your activity. With any paid iCloud plan in iOS 15, you will get access to a new service called iCloud Private Relay, which routes your web traffic in Safari anonymously through Apple's relay service, obscuring your location and IP address.

Microsoft has released the first preview build of Windows 11 today, build 22000. For those unfamiliar, Windows Insider Program allows interested fans, enthusiasts, professionals, developers and even Enterprise users to test the upcoming Windows 10 and Windows 11 versions before they are released.

Y Norman, a philosophy professor at Carnegie Mellon University, in his book "Mental Immunity," offers an interesting new way to look at how to make better choices-something all of us can use. Norman goes on to say that immunity to bad ideas depends on far more than the skills used in critical thinking.