DecryptedTech Feed (3878)
Monday, 21 March 2022 18:48
Elden Ring has a Flaw that Invaders are Using to Corrupt Game Saves
Written by Sean Kalinich
Elden Ring, from developer FromSoftware seems to have a flaw that is allowing an interesting attack for PC players. The flaw allows invaders, malicious players that enter another player’s world to cause a game crash, this crash leads the player…
Read 1396 times
Published in
In Other News
Monday, 21 March 2022 18:04
Lapsus$ Claims They have Some Microsoft Azure Source Code, Microsoft is Investigating the Claim
Written by Sean Kalinich
The Lapsus$ group has been in the news recently for theft of source code form some high-profile targets. These targets have included companies like NVIDIA, Samsung, Vodafone, and Ubisoft. The NVIDIA event was noteworthy as it included a claim that…
Read 1662 times
Published in
Security Talk
Monday, 21 March 2022 14:41
New Browser in the Browser Attack Improves on Phishing Campaigns
Written by Sean Kalinich
Phishing, regular and spear, is a very common method of compromising accounts and gaining access to a network. In many incidents, the initial compromise can be traced back to a compromised account via some sort of phishing message. This happens…
Read 981 times
Published in
Security Talk
Thursday, 17 March 2022 09:16
SolarWinds Says Remove Web Help Desk from Public Access to Avoid Possible Attack
Written by Sean Kalinich
Recently a SolarWinds Web Help Desk client reported an attempted attack on their externally facing Web Help Desk instance. The attack was caught by their EDR system which was able to block the attempt. However, the reported attack, after a…
Read 1042 times
Published in
Security Talk
Thursday, 17 March 2022 07:26
Open Source Community Takes a Hit as One Developer Pushes Destructive Content as a Form of Protest
Written by Sean Kalinich
Since the beginning of the Russian invasion of Ukraine we have seen a massive increase in what can only be called cyber warfare. This battle is not just being fought at the state level though. Even APT groups have gotten…
Read 1111 times
Published in
Security Talk
Wednesday, 16 March 2022 12:40
MFA Flaw used by State Threat Actors to Move Around your Network
Written by Sean Kalinich
Multi-Factor Authentication is often seen as an answer to account compromise, or at least a partial answer to this issue. The problem is that MFA is that while it can help with account compromise, it is certainly not the end…
Read 929 times
Published in
Security Talk
Wednesday, 16 March 2022 08:53
Microsoft Says Ads in Windows 11 File Explorer Were Not Meant for Us to See
Written by Sean Kalinich
Yesterday we reported that insider builds of Microsoft’s Windows 11 were displaying ads for other Microsoft services inside File Explorer. Like most people, we felt this was not a good thing and the news went around the internet at a…
Read 1143 times
Published in
Security Talk
Tuesday, 15 March 2022 13:20
Phishing Campaign Targeting Ukraine uses Fake AntiMalware Update
Written by Sean Kalinich
Ukrainian Security Officials are warning of an active phishing campaign. The campaign involves emails that impersonate government agencies and include links to what appear to be critical security updates. The payload of the campaign delivers Cobalt Strike and a few…
Read 890 times
Published in
Security Talk
Tuesday, 15 March 2022 10:02
Microsoft Testing Ads in File Explorer as Part of Preview Builds of Windows 11
Written by Sean Kalinich
Microsoft, famous for bad marketing moves, is looking to make another one. In this case the mistake has not hit the general public but is in a preview build of Windows 11. The mistake is shoveling ads to people for…
Read 1383 times
Published in
Security Talk
Monday, 14 March 2022 10:25
The Slippery Slope of Censorship Happening Around the Russian Invasion of Ukraine
Written by Sean Kalinich
The internet is a great thing. It has allowed peoples of different nations and geographical locations to meet, talk, share information and ideas. The massively connected world we live thanks to the internet is one where information of all kinds…
Read 1294 times
Published in
My Ramblings
Monday, 14 March 2022 07:32
Why the ZuckerVerse is not the Wonderful Thing Some Might Think it is
Written by Sean Kalinich
The concept of an immersive virtual reality world is one that is often talked and written about. It also has been the subject of several movies. When it is the topic of books and movies, it is rarely a good…
Read 1226 times
Published in
In Other News
Friday, 11 March 2022 13:31
DuckDuckGo Makes Changes after Increased Pressure from US Lawmakers
Written by Sean Kalinich
DuckDuckGo, the privacy-focused search engine and browser company, has come under a lot of negative press recently and now are facing pressure from the US government. They have already been labeled as a search engine for “conspiracy theorists” by many…
Read 5386 times
Published in
In Other News
Thursday, 10 March 2022 10:06
New Report Shows WordPress Sites leave 30% of Critical Vulnerabilities Unpatched.
Written by Sean Kalinich
PatchStack has pushed out a report that shows that a shocking 30% of vulnerabilities in WordPress sites are left unpatched. This is not to say that people are not patching (they are not), but the report illustrates that vendors for…
Read 1117 times
Published in
Security Talk
Thursday, 10 March 2022 08:26
Emotet’s Comeback Shows no Sign of Slowing as Bot Number Exceeds 100,000
Written by Sean Kalinich
Emotet, (not to be confused with Imhotep the ancient Egyptian Polymath) was originally identified in 2014 and quickly became one of the top threats of the decade. After an early start as a banking trojan, the group amassed a huge…
Read 876 times
Published in
Security Talk
Wednesday, 09 March 2022 13:25
16 New Vulnerabilities Found in HP UEFI Firmware Implementations by Binarly
Written by Sean Kalinich
The Security Group Binarly has disclosed 16 high-severity vulnerabilities in different implementations of UEFI firmware in HP Enterprise devices. The list of affected devices includes Laptops, Desktops, POS (point-of-sale) and edge computing nodes. The vulnerabilities range in severity from 7.5…
Read 1318 times
Published in
Security Talk
Tuesday, 08 March 2022 11:58
Another Linux Kernel Bug Found that can allow an Unauthenticated user Root Privileges
Written by Sean Kalinich
Linux, often thought of as a more secure alternative to Microsoft, has not had an easy year. We have seen vulnerabilities that affect the iSCSI subsystem, the Extended Berkeley Packet Filter, the Polkit pkexec component bug and now two Kernel…
Read 1650 times
Published in
Security Talk