Windows 10 and 11 users will soon notice changes when logging into Microsoft apps. A new prompt will ask if they want to use their Windows account for the login. This update is Microsoft’s response to comply with the Digital Markets Act (DMA).
Security News
Read about the latest security news. News about computer security malware, and other threats to your computer.
Proton Mail Launches Desktop App for Enhanced Email Experience
Proton Mail, a well-known email service provider, has expanded its offerings by launching a desktop application for macOS and Windows users. They also announced plans to introduce a version for Linux users in the early part of next year. Proton’s CEO, Andy Yen, stated that although many users typically access email through a browser on a desktop, desktop applications have distinct advantages, such as improved offline support. This launch marks a significant step for Proton Mail, offering a service that even major players like Gmail do not.
Widespread Exploitation of Critical Apache Struts 2 Vulnerability
Global attackers actively exploit a severe vulnerability in Apache Struts 2, a popular open-source framework for developing Java web applications and websites. This alert comes from Australian and French authorities who anticipate widespread abuse. The Apache Foundation responded on December 7 with security updates to address this vulnerability, CVE-2023-50164.
German AV-Test Institute Compares Windows 10 Antivirus Scanners
The German AV-Test Institute has compared sixteen antivirus scanners for end-users on Windows 10, and an impressive thirteen packages have been designated as ‘Top Products,’ including the built-in Windows 10 antivirus scanner and the free solution from Avast. In the latest testing conducted in May and June, antivirus packages were evaluated based on malware detection, performance, and usability.
NewsCriminals Exploit Six-Year-Old Vulnerability to Infect Zyxel Routers with Malware for Botnet Activities
Malicious actors are attempting to compromise routers manufactured by Zyxel using a vulnerability dating back six years to install malware and incorporate the compromised devices into a botnet for executing distributed denial-of-service (DDoS) attacks. The targeted router model is the Zyxel P660HN-T1A, which has reached end-of-life since 2016 and no longer receives security updates.
US Initiates Inquiry into Theft of Government Emails on Microsoft Exchange Online
The US Department of Homeland Security has announced the initiation of an investigation into the theft of government emails from Microsoft Exchange Online. Last month, it was revealed that attackers had gained access to emails from government entities and end-users using Exchange Online and Outlook.com for a month-long period. This unauthorized access was made possible through the use of a key stolen from Microsoft, potentially compromising hundreds of thousands of messages.
Google to Release Weekly Security Updates for Chrome
Google is changing its approach by introducing weekly security updates for Chrome. The goal is to address vulnerabilities in the browser more swiftly and close the gap that can occur when patches are not promptly applied.
TunnelCrack Attack: Potential Leakage of VPN User Traffic
A Belgian cybersecurity expert known for uncovering vulnerabilities like the KRACK attack on WPA and WPA2 has developed a new method that exposes a concerning threat to VPN users.
White House Hosts Summit Addressing Ransomware Attacks on Schools
The White House has organized its first-ever summit to address the ransomware attacks impacting American schools. In the previous year, 45 school districts, comprising nearly two thousand schools, were targeted by ransomware incidents.