Fortinet Security Updates

October 27, 2022

Fortinet addressed a critical vulnerability that gave remote access to numerous services and was being exploited by threat actors in the wild. The company described the vulnerability as an authentication bypass on the admin interface, allowing unauthenticated users to connect to FortiProxy web proxies, FortiGate firewalls, and FortiSwitch Manager on-prem management instances. Specifically, the flaw (CVE-2022-40684) is an authentication bypass on the administrative interface that allows remote threat actors access to the previously mentioned services.

Toyota T-Connect Database Exposed

October 26, 2022

On October 7, 2022, Toyota Motor Corporation made an announcement that the personal information of approximately 296,000 consumers had been compromised. The Toyota T-Connect system enables owners of Toyota automobiles to link their cell phones to their vehicles. By doing so, users can monitor the status of their engines, listen to music, navigate, and track fuel consumption. Recently, Toyota discovered that a source code section was published on GitHub. Included in the source code were access keys to the T-Connect data server.

Firefox 106 Update: What’s New and Improved

October 25, 2022

On October 18, 2022, Firefox 106 Stable and Firefox 102.4 ESR were released to the public. New features A new Colorways theme, Firefox view, PDF editing, text recognition, and extraction on macOS are all included in the most recent Firefox Stable release. While Firefox 106 introduces several brand-new features, the version also resolves security concerns. Mozilla corrected six unique vulnerabilities in Firefox 106 and four vulnerabilities in Firefox 102.4 ESR.

Personal Information Compromised in City of Tucson Data Breach

October 24, 2022

In light of a recent data breach, the City of Tucson, Arizona, is alerting approximately 123,000 citizens that their personal information has been compromised. The issue was detected in May 2022, but the city's investigation didn't conclude until last month. As detailed in the notification addressed to those impacted by the data breach, an attacker infiltrated the city's network and exfiltrated a large number of sensitive files. Between May 17 and May 31, the threat actors obtained access to the network and stole essential documents containing the personal information of over 123,000 people.

Akamai Finds 13 Million Malicious Domains Each Month

October 22, 2022

According to a new Akamai analysis, the company's experts classified about 79 million domains as dangerous in the first half of 2022; based on a NOD (newly observed domain) dataset, this is about 13 million malicious domains per month, representing 20.1% of all the successfully resolved NODs. According to Akamai, a NOD is any domain queried for the first time in the last 60 days. And by "malicious," it means a domain name that leads to a site meant to phish, spread malware or do some other kind of damage online.

Lyft and Argo Bring Autonomous Vehicle Rides to Austin

October 21, 2022

Lyft is now launching autonomous robotaxi trips in Austin, Texas. Argo AI will power Ford's autonomous driving vehicles. According to a blog post by the company, Austin users can choose a driverless commute directly from the Lyft app for the same price as a regular Lyft ride. Customers can start the ride, unlock the doors, and get in touch with customer service via the app. At first, that might seem strange, especially considering that two people in the driver's and passenger's seats will monitor the journey for safety.

Intel Confirms Leak of Alder Lake BIOS Source Code

October 20, 2022

After a source code leak was posted by an unidentified third party on 4chan and GitHub last week, the technology giant Intel has confirmed that confidential source code related to its Alder Lake CPUs has been leaked. The disclosed information comprises UEFI (Unified Extensible Firmware Interface) code for the company’s 12th-generation CPUs that were released in November 2021. It is believed that the leaked data also contained multiple references to Lenovo, including code used for integration with Lenovo String Service, Lenovo Cloud Service, and Lenovo Secure Suite.

New AI Upgrades to Adobe Photoshop and Premiere Elements

October 19, 2022

While Premiere Elements 2023 is receiving a couple of new features and a considerable speed boost, Photoshop Elements 2023 adds some powerful new features and enhanced performance. Along with these enhancements, both editors have been given a boost from Adobe Sensei, the company's universal AI. While Premiere Elements 2023 is receiving a couple of new features and a considerable speed boost, Photoshop Elements 2023 adds some powerful new features and enhanced performance.

Cloudflare Revolutionizes CAPTCHAs

October 18, 2022

Turnstile, an ambitious new project from Cloudflare, aims to do away with the CAPTCHAs that are now being used on the internet to confirm users are not robots. Turnstile utilizes a revolving set of "browser challenges" to verify that visits to a website are not, in fact, bots. This service is free for all website owners, whether they are Cloudflare clients or not. The company stated that their CAPTCHA replacement would also increase user privacy on the web since sites that use it won't need to submit user data to Cloudflare.

DDoS Attacks Target Major U.S. Airports

October 17, 2022

Some major U.S. airports' websites were inaccessible early on Monday, October 10, 2022, due to a coordinated denial-of-service assault orchestrated by professional hackers. However, officials said flights were unaffected. The assaults, in which participants bombard sites with garbage data, were planned by a mysterious organization named Killnet. The group posted a target list on its Telegram channel the day before the attacks. Even though DDoS attacks are highly visible and meant to have the most psychological impact possible, they are mostly a nuisance.

Contact

Network Revolution

Social Media