Security News

Microsoft is testing a way to quickly bring new features and improvements to Windows 10 outside of the regularly scheduled Windows updates. Historically, when Microsoft wants to bring a new feature or improvement to Windows 10, they include them in scheduled cumulative updates or feature updates.

There's nothing quite like eating your own dog food, as Test and Trace chief Baroness Dido Harding has learned after being instructed to self-isolate by the NHS COVID-19 contact-tracing app overnight. In a tweet this morning, Harding said she was feeling well, and that there's "Nothing like personal experience of your own products." A screenshot posted to Twitter shows Harding with nine days remaining in her isolation period.

A website created for global consultancy Deloitte to quiz people on knowledge of hacking tactics has proven itself vulnerable to hacking. The site invites visitors to "Test Your Hacker IQ" by entering a username.

Applications Software Technology announced the version 3.0 release of AST's automated Testing-as-a-Service, powered by the unique and proprietary AST Autonomous Cloud Tester tool. The latest series of enhancements enables organizations to further accelerate their release, patch, and upgrade test cycles across the full breadth of Oracle Cloud applications.

As if things were not going badly enough for the UK's COVID-19 test-and-trace service, it now seems police will be able to access some test data, prompting fears the disclosure could deter people who should have tests from coming forward. As revealed in the Health Service Journal [paywall], the Department for Health and Social Care and the National Police Chiefs' Council have agreed that officers can access test results to determine whether or not a "Specific individual" has been told to self-isolate.

Azure Defender for IoT - Microsoft's new security solution for discovering unmanaged IoT/OT assets and IoT/OT vulnerabilities - is now in public preview and can be put to the test free of charge. About Azure Defender for IoT. "As industrial and critical infrastructure organizations implement digital transformation, the number of networked IoT and Operational Technology devices has greatly proliferated. Many of these devices lack visibility by IT teams and are often unpatched and misconfigured, making them soft targets for adversaries looking to pivot deeper into corporate networks," Phil Neray, Director of Azure IoT Security Strategy at Microsoft, explained.

APIsec provides a 100% automated and continuous API security testing platform that eliminates the need for expensive, infrequent, manual pen-testing. "Our customers love the comprehensive security test coverage APIsec provides out of the box, and they wanted to stop hiring expensive, time-consuming outside firms for penetration testing reports," said Intesar Shannan Mohammed, CTO of APIsec.

Stellar Cyber announced a new toolkit customers can use to verify the platform's functionality by launching a wide variety of cyberattacks against it. The Red Team toolkit is an offensive attack generator that 'red team' security analysts can use to test the Stellar Cyber Open-XDR platform's ability to defend against the latest attacks.

Cohu announced the introduction of its RedDragon RF test module for 5G, Wi-Fi 6 and Ultra-Wideband standards. The new RedDragon module optimizes throughput and test yield for semiconductor manufacturers of RF and mobile communication systems.

Six European Union countries and the bloc's executive Commission have begun testing a virtual "Gateway" to ensure national coronavirus tracing apps can work across borders. The trial starting Monday will allow national computer systems that run tracing apps in the Czech Republic, Denmark, Germany, Ireland, Italy and Latvia to communicate with each other via a central hub.