Microsoft NTLM vuln, Gamer patches, Security awareness fail, and more.

Hi, I’m Paul Torgersen. It’s Thursday,
October 10th, 2019 and this is a look at the information security news from overnight. From
Two security vulnerabilities in Microsoft’s NTLM authentication protocol allows attackers
to bypass the Message Integrity Code protection and downgrade NTLM security features. This
can ultimately expose all Active Directory customers with default configurations. Patches
were issued earlier this week. From
Intel and Nvidia issued warnings about high-severity flaws in two popular products commonly used
by gamers. Impacted are the Nvidia Shield TV and Intel NUC (short for Next Unit of Computing)
mini-PC kit. Each system warned about two flaws that could lead to privilege escalation,
information loss and denial of service. Get your patch on kids. From
Border Gateway Protocol is getting love from a couple different directions recently. NIST
is working on a proposal for BGP validation and allowing ISPs better visibility. And MIT
is working on a machine learning model to identify serial hijackers. More to come. From
Beware a phishing campaign that pretends to be an Amazon AWS suspension notice for unpaid
bills that looks good enough to trick many users. The sender, the email itself and the
fake Amazon login page are all very well done. You can see some screen grabs in the article. And from
Only 2% of all the survey takers managed to answer all ten questions correctly in a fairly
basic tech quiz. Users were asked about phishing, two factor authentication, HTTPS, browser
cookies, privacy policies, net neutrality, private browsing, if they knew who owns Instagram
or WhatsApp, and if they could identify Jack Dorsey as the Twitter CEO by looking at a
photo. Now I am not terribly concerned about those last few, but if you are running a security
awareness program in your organization, you may want to read this one. That’s all for me today. Have a great rest
of your day and until tomorrow, be safe out there.

Leave a Reply

Your email address will not be published. Required fields are marked *

Copyright © 2019 Explore Mellieha. All rights reserved.