Security News > 2021 > September

Microsoft has released the first Windows 11 "Nickel" preview build 22449 to Windows Insiders in the 'Dev' channel, allowing them to test out new unstable features that are still being developed. After announcing Windows 11's release date, Microsoft began emailing Windows Insiders in the 'Dev' channel warning them that they would soon be distributing unstable Windows 11 builds in this channel.

It's possible to track someone's user location via Google Play sign-ins, a researcher has discovered - a potential stalker avenue that, so far, the internet behemoth has yet to address. In short: Arntz logged into his Google Play account from his wife's phone, in order to pay for an app that that she wanted to install.

Cisco has patched a near-max critical bug in its NFVIS software for which there's a publicly available proof-of-concept exploit. On Wednesday, Cisco released patches for the flaw - an authentication bypass vulnerability in Enterprise NFV Infrastructure Software that's tracked as CVE-2021-34746.

On Wednesday, Sungard Availability Services published the results of a survey highlighting sentiments about hybrid work moving forward, critical tools for remote employees and network security. While many companies are planning for long-term remote operations, faith in the security of their infrastructure doesn't exactly beam confidence.

A DiY home security system sold to families and businesses across the US sports two vulnerabilities that, while not critical, "Are trivially easy to exploit by motivated attackers who already have some knowledge of the target," Rapid7 warns. The Fortress S03 WiFi Security System is a consumer-grade offering that customers can be customized for each physical location.

On Tuesday, the FBI and CISA released an advisory, warning organizations to "Remain vigilant" to cybersecurity threats heading toward the holiday weekend. The federal advisory makes note of "Recent holiday targeting," stating that "Cyber actors have conducted increasingly impactful attacks against U.S. entities on or around holiday weekends." Neither FBI nor CISA has information about a cyberattack "Coinciding with upcoming holidays and weekends," per the advisory, but the document says cybercriminals may see holidays and weekends as "As attractive timeframes" to "Target potential victims."

Ireland's Data Privacy Commissioner has hit Facebook-owned messaging platform WhatsApp with a €225 million administrative fine for violating the EU's GDPR privacy regulation after failing to inform users and non-users on what it does with their data. EU data regulators can impose maximum GDPR fines of up to €20 million or 4% of the infringing company's annual global turnover - whichever is greater - for violating EU's privacy laws.

The Register spoke to HypaSec CEO, Chris Kubecka, who served in the US Air Force before transferring to Space Command, where she handled command and control systems, securing military and intelligence assets from nation-state attacks, and cyber security. "In the UK too," he tells The Register, "Space integration has featured as an important element of the government's recent Integrated Review. Within an allied context, the Five Eyes coalition serves a similar purpose." The space domain awareness coalition based at Vandenberg Space Force Base monitors all space activity, whether accidental or deliberate, in order to pre-warn commercial vendors about space conjunctions.

Hackers can easily access devices through mobile apps. Mobile app security threats have arisen over the years.

Image filters are of course the built-in visual-effects tools in WhatsApp used to change the color, saturation, tone, sharpness and more of a photo taken. "Src jbitmap" - Represents the input image.