Security News

Windows 10 KB5017308 causing issues with Group Policy settings
2022-09-16 17:02

The Windows 10 KB5017308 cumulative update released this Patch Tuesday is reportedly causing Group Policy Object issues, according to admin reports. "Running Windows Update Standalone Installer with the /uninstall switch on the combined package will not work because the combined package contains the SSU. You cannot remove the SSU from the system after installation."

Microsoft Edge 105 won't start due to old group policy - How to fix
2022-09-03 22:43

The new Microsoft Edge 105 is not starting for many Windows users due to a deprecated group policy used to disable reporting of usage and crash-related data to Microsoft. On Thursday, Microsoft Edge 105 was released with numerous enhancements, including enhanced security mode improvements and new group policies.

GitHub's new privacy policy sparks backlash over tracking cookies
2022-08-11 07:45

GitHub to add non-essential cookies on marketing pages. "GitHub is introducing non-essential cookies on web pages that market our products to businesses," explains Olivia Holder, GitHub's Senior Privacy Counsel.

TikTok Postpones Privacy Policy Update in Europe After Italy Warns of GDPR Breach
2022-07-12 20:44

The reversal, reported by TechCrunch, comes a day after the Italian data protection authority - the Garante per la Protezione dei Dati Personali - warned the company against the change, citing violations of data protection laws. "The personal data stored in users' devices may not be used to profile those users and send personalized ads without their explicit consent," the Garante said.

Cyber Risk Retainers: Not Another Insurance Policy
2022-06-07 13:25

Pure IR retainers typically don't offer security leaders flexibility to maximize their investment, but by being permitted to use credits toward preparedness, testing, simulations and so forth, cyber risk can be mitigated. There are three key elements to achieving an effective cyber risk retainer: negotiation, structure and execution.

Aligning Your Password Policy enforcement with NIST Guidelines
2022-05-31 14:06

Even if an organization has already brought its password policy in line with NIST's recommendations, it is a good idea to periodically revisit those recommendations since they do change over time. Not surprisingly, NIST no longer recommends scheduled password changes.

Google fights doxxing with updated personal info removal policy
2022-05-01 14:00

Google has expanded its policies to allow doxxing victims to remove more of their personally identifiable information from search engine results starting earlier this week. While people already had the option to request the removal of personal data that could be used in financial fraud, such as credit card and bank account info, before this update, Google now also allows demands to delete contact information.

4 steps for building an orchestrated authorization policy for zero trust
2022-04-18 05:30

Policies must be written to account for this, and the strongest policies are built on an authorization model that is orchestrated in nature. An orchestrated and centralized approach to authorization builds dynamic and fine-grained access control policies that meet the demands of modern security strategies including zero trust.

Google boosts Android security with new set of dev policy changes
2022-04-07 19:41

Google has announced several key policy changes for Android application developers that will increase the security of users, Google Play, and the apps offered by the service. These new developer requirements will take effect between May 11th through November 1st, 2022, giving developers enough time to adjust to the new changes.

US State Department opens cybersecurity policy bureau
2022-04-05 21:23

The US State Department this week launched an agency responsible for developing online defense and privacy-protection policies and direction as the Biden administration seeks to integrate cybersecurity into America's foreign relations. "The last few years have made evident how vital cybersecurity and digital policy are to America's national security," said Secretary of State Antony Blinken during a ribbon-cutting ceremony for the new Bureau of Cyberspace and Digital Policy.