Latest Technology News

Enterprises invest billions annually on SIEM (Security Information and Event Management) software and expect this investment to result in comprehensive threat coverage.

But a new report from AI-powered threat coverage platform CardinalOps shows that on average SIEM deployment rules miss 84 percent of the techniques listed in MITRE ATT&CK.

Continue reading →

Back on January 23, the New York Times published an Op-Ed piece by Kate Murphy titled America Has a GPS Problem, citing fear at the highest levels of government and industry that international bad actors might bring down the Global Positioning System satellite network, running your Tesla into a guardrail in the process. It’s just the sort of story you’d expect to read here, rather than in the Times, but what the heck. And the story is absolutely correct: we are all in danger. But Ms. Murphy, beyond wringing her hands, doesn’t say how the crisis will be averted or who will do the averting. I predict that Apple will fix the problem and save the day and they’ll probably do it this year.

The military and intelligence communities have long been worried that China or Russia could shoot down some or all of the 24 GPS satellites, blinding our strategic weapons in the process. It’s literal shooting-down, too, since the anti-satellite weapons demonstrated so far have been kinetic -- dumb rocks smashed into our satellites at incredible speed, knocking them from the sky and requiring incredible precision. So far only China and Russia have this offensive capability. But Ms. Murphy and the Times expand the population of bad guys beyond China and Russia to include enemies jamming, spoofing, or otherwise hacking GPS, which could be anyone -- Iran, North Korea, even groups of private individuals.

Continue reading →

We've seen a tidal wave of developer-enabling technologies over the last ten years. From DevOps, to CI/CD, to containers and microservices -- all of these best practices and technology patterns aim to speed up the process of shipping code fast from the developer into production.

But while software has become increasingly easy to package and deploy, the process of diagnosing and fixing bugs in production has become much more difficult. When services crash in the middle of the night, developers still find themselves in the world of logs, hotfixes and desperation -- but now with much greater surface area to investigate as applications span distributed systems.

Continue reading →

Whenever Microsoft releases updates for Windows, the company is always keen for as many people as possible to get the patch installed. But with this month's Patch Tuesday bug fixes, the company is encouraging Windows users even more than usual.

Referring to two Critical security issues and one Important one, all affecting TCP/IP, Microsoft says that "it is essential that customers apply Windows updates to address these vulnerabilities as soon as possible". The CVE-2021-24074, CVE-2021-24086 and CVE-2021-24094 vulnerabilities affect Windows 7 upwards.

Continue reading →

This Patch Tuesday -- the second Tuesday of February, yesterday -- Microsoft released fixes for a slew of Windows 10 flaws. Included among a total of 56 vulnerabilities is a critical zero-day which was being actively exploited to gain admin privileges on victims' systems.

But the fix for CVE-2021-1732 (Windows Win32k Elevation of Privilege Vulnerability) is just one of 11 fixes for critical bugs this month. In addition, Microsoft has fixed two Moderate vulnerabilities, as well as 43 that are marked as Important.

Continue reading →

Living in Apple's ecosystem is a very rewarding experience. I know it is a cliché, but "it just works" is the truth. Are Apple products perfect and without issues? No. But when all of your gear is from Apple, it often works together brilliantly. An iPhone, Apple Watch, and AirPods together, for instance, is a trio that creates beautiful synergy -- especially when away from home.

If you are a road-warrior with both an Apple Watch and AirPods, Satechi has a new charger that you must check out. The elegant 2-in-1 USB-C charger connects to either a MacBook or iPad with USB Type-C ports and provides a mini charging pad that accommodates both AirPods or Apple Watch. Its small size makes it perfect to just toss in a bag. Best of all, since it charges both devices, you can potentially carry fewer chargers and ultimately reduce clutter.

Continue reading →

Nowadays, professional photographers with high-end camera equipment are embracing CFexpress storage cards more and more. The problem? Those cards are quite expensive. Not to mention, many photographers can get by without top of the line. And so, for many photographers -- amateur and professional alike -- good ol' SD cards are still more than fine.

Thankfully, companies are still putting out new SD cards, and today, Lexar launches its latest. The SILVER Series Professional 1066x SDXC UHS-I card is both fast and durable. Best of all, pricing starts at just $17.99, making it affordable for all consumers.

Continue reading →

Today is Safer Internet Day, held annually to promote making the internet a safer and better place for all and particularly for children and younger users.

Industry experts have been keen to offer their their views and advice and we've put together a round up of some of the best.

Continue reading →

Detecting and resolving data leakage is a top security challenge for public sector organizations with 24 percent suffering accidental leakage of cloud data.

The 2021 Cloud Data Security Report from Netwrix finds phishing (reported by 39 percent of organizations) to be the most common incident that government agencies experienced in the cloud, followed by accidental data leakage (24 percent) and targeted attacks on infrastructure (22 percent).

Continue reading →

A new survey by O'Reilly Media and IBM reveals that developers are better off building open source cloud skills rather than focusing on skills related to a specific vendor's cloud.

The survey of almost 3,500 developers and technology managers finds that open source software is rated equal to or better than proprietary software by 94 percent of respondents. In addition when choosing cloud providers 70 percent of respondents prefer one based on open source.

Continue reading →

The single most important driver of DevSecOps programs is improving the security, quality, and resilience of software, according to a new report. But insufficient automation in software development is the number one cause of delays in product releases.

The study from Security Compass shows bringing technology to market faster is the second most important driver, while cost reduction is the least important.

Continue reading →

During 2020 Microsoft maintained its position as the brand most often found in phishing emails, followed by Facebook and PayPal.

Email defense specialist Vade Secure has released its 2020 Phishers' Favorites report which also shows that cloud services overtook financial services to become the most impersonated industry, whilst cynical hackers have been quick to exploit the COVID-19 pandemic.

Continue reading →

Here on the East Coast of the USA, we have been getting hit with some pretty nasty snow lately. Is it pretty? Sure, but I still hate it. You see, as a homeowner, I am responsible for cleaning it off my property. Yours truly has to go out in the frigid weather with a shovel and a snow blower to make sure my stoop, walkway, and driveway are all accessible.

As a result of the cold weather, my hands are rather chapped and dry lately -- I could probably benefit from some better gloves. As a "tech guy" gloves are a rather boring topic, but today, a new such product caught my eye. Called "ColdWork M-Pact," these hardcore gloves are from popular company Mechanix Wear. Believe it or not, in addition to the expected protections, they have some cool technology too.

Continue reading →

Later this year, Microsoft is expected to refresh the look of Windows 10 and native apps, introducing a number of long-overdue visual improvements, including rounded corners and new colors. For many people, the changes likely won’t go far enough, but it’s too early to pass judgment just yet.

When Windows XP first arrived back in 2001 it really shook things up with its revolutionary design and playful color scheme. If you were wondering how it might look if it was released today, we have the answer.

Continue reading →

Failure to automate control of physical accounts is a major weak point in enterprise security according to a study released by Thycotic.

Among the findings are that a significant number of enterprises (28 percent) only audit privileged access management (PAM) on a quarterly or annual basis.

Continue reading →