Ransomware on Thermostats is just the Tip of the Iceberg

This past weekend at the IoT Village in the DEF CON security conference, Pen Test Partners set to out to demonstrate the sad state of security when it comes to IoT devices. They did this buy showing how they could easily hack a smart thermostat so that ransomware could be installed on it. [...]
Continue reading »

Microsoft patches 27 flaws in Windows, Office, IE, and Edge

Microsoft released another batch of security patches Tuesday, fixing 27 vulnerabilities in Windows, Microsoft Office, Internet Explorer, and its new Edge browser.

The patches are organized in nine security bulletins, five of which are rated critical and the rest important, making this Microsoft patch bundle one of the lightest this year in terms of the number of patches.

All of the issues resolved this month are in desktop deployments, but Windows servers might also be affected depending on their configuration.

“For example, Windows servers running Terminal Services tend to act as both desktop and server environments,” said Tod Beardsley, security research manager at Rapid7, via email. However, the majority of Windows server admins out there can roll out patches at a fairly leisurely pace, he said.

To read this article in full or to leave a comment, please click here

Continue reading »

Here’s why you might want to avoid Windows 10 previews for a while

Here's why you might want to avoid Windows 10 previews for a while

Yesterday, we heard that the first preview build of Windows 10 Redstone 2 (RS2) – the next major update for the OS due early next year, following on from the Anniversary Update or RS1 – could land as soon as this week, although perhaps unsurprisingly, it won't contain any major changes.

In a statement on the Windows 10 Feedback Hub, Redmond made it clear that not just this first build of RS2, but all the early builds won't have any "noticeable" changes or new features introduced.

So those of you hoping for a juicy addition or two can color yourselves disappointed. Most of the work in these early previews will be tinkering with the very core of the OS, or as Microsoft puts it, "making some structural improvements to OneCore".

Once that's done, Redmond will look at putting new features in, but that won't happen for a few months yet.

Glitch central

Microsoft also issued a warning that because it's playing with the underlying architecture of Windows 10 here, these early preview versions may contain more than their fair share of bugs and glitches. So in other words, they're not for the fainthearted.

Indeed, because there are no new features introduced anyway, these builds are likely to only be appreciated by the real hardcore Windows testers out there. So some of you on the Fast Ring might want to think twice about getting those straight-out-the-door previews.

As for the recently deployed Anniversary Update, that in itself has been causing some folks trouble, with recent reports of the update stripping away Cortana, and causing freezing issues with some computers.

Via: Neowin

Continue reading »