The recently released Windows 10 Fall Creators update has new features not only for regular users but for business and enterprise deployments as well. Microsoft has recently reported that their latest operating system update is active on more than 500 million “monthly active devices, and continues to gain momentum”. With Enterprise being a critical market segment interest for Microsoft, here are some … Read More
Key Reinstallation Attacks: WPA2 encryption.
Yesterday, October 16, 2017, two Belgian researchers published a proof of concept of a vulnerability in the current implementation of WPA2 (Wi-Fi Protected Access II), rendering all modern networking devices exposed. Affected Implementations include: Apple OS X 10.9.5 Apple MacOS Sierra 10.12 Apple iOS 10.3.1 Google Android 6.0 Open BSD 6.1 Microsoft Windows 7, Windows 10 This technique allows attackers to view … Read More
Key Reinstallation Attacks: Ubiquiti Devices.
Ubiquity has undoubtedly been one of the first and fastest to Patch the WPA2 Vulnerability. However, the process is not without its hiccups. Talking to Ubiquiti Networks a moment ago we confirmed that there is an issue if you attempt to use UniFi Controller to update the firmware. The issue in question is that the controller will be stuck on the … Read More
Microsoft’s Blog: “The need for urgent collective action to keep people safe online: Lessons from last week’s cyberattack”
A reflection by Brad Smith, Microsoft’s Presidente and Chief Legal Office, on the complexity and diversity of the current wave of risks: https://blogs.microsoft.com/on-the-issues/2017/05/14/need-urgent-collective-action-keep-people-safe-online-lessons-last-weeks-cyberattack/
Digital Ocean Announces Cloud Firewalls.
Digital Ocean has lately been simplifying the infrastructure experience. With that approach in mind, Cloud Firewalls is an effective and simple way to secure Droplets. The service is free and created with scalability in mind. Cloud Firewalls is a central location where access rules are defined and applied to Droplets, enforcing them on the network layer. Non-whitelisted traffic will not reach the droplets, … Read More
Symantec’s Blog with updated information on WannaCry Ransomware
As it has been widely covered in the media by now, since Friday, May 12, 2017, the WannaCry Ransomware has affected a significant number of machines, effectively encrypting 176 file types and renaming them to *.WCRY, asking for the equivalent of US 300 in bitcoins. The amount increases to double that after three days, complete with visual countdown indicator. After … Read More