Security News > 2021

Microsoft has announced that the Spring Update will be released using an enablement package that simply turns on dormant features already found in Windows 10 2004 and Windows 10 20H2. For users running these Windows 10 versions, it means that Windows 10 21H1 will install extremely fast as it just needs to change a few settings to enable the features. Many of the features that Windows users were looking forward to, such as DoH, the new Battery settings, and the modern Disk Management settings page, are not coming to Windows 10 21H1. For these features, users will have to wait for the 'Windows 10 21H2 Sun Valley update' coming towards the end of the year.

March 2021 Patch Tuesday: Microsoft fixes yet another actively exploited IE zero-dayAs system administrators and security teams around the world worked on ascertaining whether they've been breached and compromised via vulnerable Microsoft Exchange Server installations, Microsoft has fixed additional CVEs, including an Internet Explorer memory corruption flaw that's being exploited in the wild and one Windows Win32k EoP flaw that is publicly known. Keeping your serverless architecture secureServerless architecture empowers organizations to build and deploy software at scale without in-house servers.

Application data security provider Pathlock this week announced that it has raised $20 million in strategic funding led by Vertica Capital Partners. The funding round was announced in conjunction with a rebranding from Greenlight Technologies to Pathlock.

Major 'Stable' versions of Microsoft Edge will now be released every four weeks to synchronize with the new four-week release cycle announced by Google Chrome. This month, Google announced they were switching from a six-week release cycle to a four-week cycle after improving their testing and release process.

The US Department of Justice has indicted the CEO of encrypted messaging company Sky Global, and an associate for allegedly aiding criminal enterprises avoid detection by law enforcement. Sky Global is the developer of an encrypted chat app known as Sky ECC that claims to be the "Most secure messaging app available anywhere in the world today."

Three vulnerabilities found in the iSCSI subsystem of the Linux kernel could allow local attackers with basic user privileges to gain root privileges on unpatched Linux systems. GRIMM researchers discovered the bugs 15 years after they were introduced in 2006 during the initial development stages of the iSCSI kernel subsystem.

Update: Microsoft has released out-of-band non-security updates to address the Windows 10 printing crash issue. Microsoft has provided a temporary fix for the Windows 10 blue screen crashes plaguing customers when printing after installing the March 2021 cumulative updates.

The Biden administration is not planning to step up government surveillance of the U.S. internet even as state-backed foreign hackers and cybercriminals increasingly use it to evade detection, a senior administration official said Friday. The official said the administration, mindful of the privacy and civil liberties implications that could arise, is not currently seeking additional authority to monitor U.S.-based networks.

US regulators on Friday listed Huawei among Chinese telecom gear firms deemed a threat to national security, signaling that a hoped for softening of relations is not in the cards. A roster of communications companies thought to pose "An unacceptable risk" to national security included Huawei Technologies; ZTE; Hytera Communications; Hangzhou Hikvision Digital Technology, and Dahua Technology.

At long last, top companies are starting to take cybersecurity seriously. CompTIA is seen as the gold standard when it comes to cybersecurity exams, with several certifications to choose from.