Latest Technology News

Hardware authentication specialist Yubico is announcing a new FIDO2 compatible security key which will be supported in Windows 10 devices and Microsoft Azure Active Directory (Azure AD).

This means that organizations will have the option to enable employees and customers to sign in to an Azure AD joined device with no password, simply by using the security key to get single sign-on to all Azure AD based applications and services.

Continue reading →

Microsoft has opened up its heart to Linux in recent years, but now the company has done something that would have previously been unthinkable: it has built its own Linux kernel.

As part of its embracing of the Internet of Things, Microsoft has announced Azure Sphere, an ARM-based platform for the IoT with a focus on security. Key to Azure Sphere are small MCU-powered (microcontroller) devices -- essentially SoC devices -- which run Azure Sphere OS and securely connect to Azure backends. Security comes thanks to the use of a custom Linux kernel.

Continue reading →

IKEA-owned TaskRabbit is offline while the company investigates a "cybersecurity incident". Very little information has been given about the incident, but the company says that it is working with "an outside cybersecurity firm and law enforcement to determine specifics" of what happened.

While even vague details are unavailable, the fact that the TaskRabbit website and app have been taken offline could well be indicative of the severity. The company is advising its customers to change their passwords elsewhere if they have reused their TaskRabbit credentials for other sites and services.

Continue reading →

Global fears about cyberattacks by Russia are not calming down, and the US and UK have just issued a joint alert warning of state-sponsored attacks on network infrastructure devices, including residential routers.

The west is accusing Russia of an espionage-driven malicious cyberoffensive, and the Technical Alert -- which comes following a joint effort between the Department of Homeland Security (DHS), the Federal Bureau of Investigation (FBI), and the UK's National Cyber Security Centre (NCSC) -- warns that both governmental and residential hardware is being targeted to "potentially lay a foundation for future offensive operations".

Continue reading →

With the release of Windows 10 Insider Preview Build 17134 (Redstone 4) to the Fast Ring, Microsoft has given a little insight into what went wrong with build 17133, which had been thought to be the RTM build but was delayed due to a "blocking bug".

The release of Windows 10 Spring Creators Update was expected this month, but the launch date is now seemingly increasingly likely to slip into May. Microsoft has revealed that build 17133 was proving problematic and the company says it wants to fix the issues now, rather than after the fact.

Continue reading →

Windows 10 Redstone 4 Build 17133 was widely thought to be the RTM for the forthcoming Spring Creators Update after it rolled out to Insiders on the Fast, Slow, and Release Preview rings in quick succession.

However, Microsoft’s discovery of a blocking bug threw a rather large spanner in the works and delayed the release of the forthcoming feature update.

Continue reading →

Both Thunderbolt 3 docking stations and bus-powered USB-C hubs are nothing new. But what about bus-powered Thunderbolt 3 docking stations? Ah, that is a much more rare product. In fact, today, StarTech is launching two bus-powered portable Thunderbolt 3 docking stations that it claims are an "industry first." If you aren't familiar, "bus-powered" means there is no need for an AC adapter -- the port on your laptop powers the dock. This is great because, without a power adapter, you have one less thing to carry.

Why are there two models? Well, while they are both similar, they are are also quite different. The TB3DK2DP features two DisplayPort connections, a USB 3.0 Type-A port, and gigabit Ethernet. The TB3DKM2HD in comparison has two HDMI ports, gigabit Ethernet, a USB 3.0 Type-A port and a USB 2.0 Type-A port. Both portable docks can push two 4K monitors at 60Hz, but only the DisplayPort variant can do 5K at 60Hz. Neither feature female USB-C ports.

Continue reading →

If you still haven't made the leap from HDD to SSD, what the heck are you waiting for? OK, true, mechanical drives are more affordable when capacity is considered, but come on -- the speed makes it totally worthwhile. It's not like you need a fancy NVMe drive either -- for most consumers, an inexpensive SATA-based solid state drive is more than adequate. Let's be honest -- outside of benchmarks and bragging rights, a blazing-fast PCIe SSD is probably overkill for the majority of consumers.

Today, Kingston unveils a new line of SATA-based SSDs. They are available in three form factors -- 2.5-inch, M.2 2280, and mSATA. Capacity ranges from 120GB to 1920GB depending on which of the aforementioned styles is selected. For instance, the mSATA model maxes out at 480GB, while the M.2 goes up to 960GB. The 2.5-inch takes things to another level, as it features capacities up to a massive 1,920GB! Best of all, they feature 256-bit AES hardware-based encryption.

Continue reading →

A little over a month after introducing Android 8.1 in the open beta channel, today OnePlus officially rolls out the latest Oreo version to OnePlus 5T and OnePlus 5 users across the globe. This makes it one of the few Android makers to have its latest flagships running up-to-date software.

The official build, OxygenOS 5.1.0, on top of upgrading Android, adds a couple of interesting new features and improves security, as it comes with the latest Android security patch (for April 2018). Of all the changes listed by OnePlus, only one is exclusive to the OnePlus 5T.

Continue reading →

The US Department of Commerce has implemented a ban on American companies selling components to ZTE. The Chinese telecoms firm is being punished for violating sanctions on Iran and North Korea after pleading guilty last year.

At the same time, the UK's cyber defense watchdog, the National Cyber Security Centre (NCSC), has warned UK telecoms firms that the use of ZTE equipment or services pose a risk to national security. The action taken by the two nations is expected to have severe implications for the company.

Continue reading →

Following a huge backlash over the weekend, Weibo -- the Chinese equivalent of Twitter -- has announced a reversal of a policy that would have seen gay content banned from the platform.

Originally announced on Friday, the "clean-up" operation was due to last three months, and covered violence and pornography as well as homosexual content. Now, however, Weibo has felt the pressure of public outcry and backed down saying: "We're no longer targeting gay content".

Continue reading →

Public cloud services are now in use in 97 percent of organizations, but one in four have experienced data theft and cloud-first strategies are on the decline.

These are among the findings of the latest annual cloud report from McAfee. Among other highlights are that 83 percent store sensitive data in the public cloud and 69 percent trust the public cloud to keep their sensitive data secure. However, one in five organizations has experienced an advanced attack against its public cloud infrastructure.

Continue reading →

Cyber security company ESET is using this week's RSA Conference in San Francisco to launch its new range of enterprise security products.

These include a new ESET Enterprise Inspector, an Endpoint Detection and Response (EDR) solution, and ESET Dynamic Threat Defense, a tool that provides off-premise cloud sandboxing, which leverages machine learning and behavior-based detection to prevent zero-day attacks.

Continue reading →

A large number of free Android apps suffer with flaky security because software developers are leaving cryptographic keys embedded and passwords hard-coded.

Speaking at the BSides security conference in San Francisco, software vulnerability analyst Will Dormann revealed how he had found serious security problems in thousands upon thousands of apps. After testing 1.8 million apps, he found almost 20,000 featured built-in passwords and keys, and even when a separate password store was used, user data was still open to attack from simple password crackers.

Continue reading →

Breaches related to open source components have grown 50 percent since 2017, and an eye-opening 121 percent since 2014, according to a new survey from open source governance and DevSecOps automation specialist Sonatype.

But the survey finds that those companies with mature DevOps practices are 24 percent more likely to have deployed automated security practices throughout their development lifecycle.

Continue reading →