GitHub is an useful development and versioning environment – part of it’s growth was to acquire another similar service NPM – a software depository. The software depository is now under possible attack from the simple of threat actors offering malicious packages with names that are just slightly different from the …
One known vulnerability added to the CISA database
The US Cybersecurity and Infrastructure Security Agency (CISA) has added a Microsoft vulnerability to it’s Known Exploited Vulnerabilities Catalog: CISA Adds One Known Exploited Vulnerability to Catalog | CISA This vulnerability was addressed in June’s Microsoft Patch Tuesday. Guidance on Applying June Microsoft Patch | CISA
The Follina threat has not gone away just because Microsoft has issued a patch – Octagon has the solution
The threat actors are still attempting to exploit the Follina flaw in Microsoft Word – looking for those of you out there who have not bothered to run the updates: XFiles info-stealing malware adds support for Follina delivery (bleepingcomputer.com) Have you checked all the machines in your organisation have run …
The two sides of Google
On one side we have the alleged Google as villian. Google sign-up ‘fast track to surveillance’, consumer groups say – BBC News We all know that the primary Google business model is based on knowledge and use of our personal data, to promote the effectiveness of it’s advertising product to …
Optional Windows 10 update
Microsoft has issued a Windows 10 update to fix some bugs and add some printing features. Windows 10 KB5014666 update brings new printing features, bug fixes (bleepingcomputer.com)
Early Lessons from the Ukraine Russia cyber conflict
Brad Smith, President & Vice Chair at Microsoft discusses what has been learnt, so far, from the Ukraine Russia cyber conflict and looks at how this can easily spread beyond the borders of the conflicting nations: Defending Ukraine: Early Lessons from the Cyber War – Microsoft On the Issues
Back to Google’s “sentient” AI
Here are a couple of articles looking at the issues raised around Google’s AI chatbot, LaMDA (language model for dialog applications), because Blake Lemoine, an engineer working with the system, has claimed LaMDA is sentient. Google was not pleased – they suspended Blake, for publishing confidential company property. Google does …