15Apr 2018 by richard@baronsoftware.com

Apple starting to alert users that it will end 32-bit app support on the Mac

News Items, Software Events
Apple starting to alert users that it will end 32-bit app support on the Mac Tomorrow at midnight PT, Apple will begin issuing an alert box when you open a 32-bit app in MacOS 10.13.4. It’s a one-time (per app) alert, designed to help MacOS make the full transition to 64-bit. At some unspecified time in the future, the operating system will end its support for 32-bit technology… meaning those apps that haven’t been updated just won’t work.  That time, mind you, is not tomorrow, but the company’s hoping that this messaging will help light a fire under users and developers to upgrade before that day comes. Says the company on its help page, “To ensure that the apps you purchase are as advanced as the Mac you run them on, all…
Read More
10Apr 2018 by richard@baronsoftware.com

One-Third of Internal User Accounts Are ‘Ghost Users’

News Items
One-Third of Internal User Accounts Are 'Ghost Users' Due to inadequate access controls on various systems attackers and malware can easily move laterally through an organization destroying content.  Meager access controls on folders and file systems are leaving organizations wide open to the lateral movement of attackers and malware, according to a new report. Security firm Varonis analyzed data risk assessments performed by its engineers on 130 companies and 5.5 petabyes of data through 2017. What concerns Varonis technical evangelist Brian Vecci most is that companies left 21% of all their folders open to everyone in the company. Sensitive folders and files are among the overexposed. Thirty percent of companies leave more than 1,000 sensitive folders accessible to all employees, and 41% have more than 1,000 sensitive files accessible to…
Read More
10Apr 2018 by richard@baronsoftware.com

McAfee finds that gamers can work cyber security jobs

News Items
McAfee finds that gamers can work cyber security jobs The Santa Clara, California-based cyber security company said it did a survey of 300 senior security managers and 650 security professionals at major corporations. And 78 percent of respondents said that the current generation entering the work force — those that grew up playing video games — are stronger candidates for cyber security roles. The report suggests that gamers, those engaged and immersed in online competitions, may be the logical next step to plugging the skills gap. 92 percent of respondents believe that gaming affords players experience and skills critical to cyber security threat hunting: logic, perseverance, an understanding of how to approach adversaries and a fresh outlook compared to traditional cyber security hires. Information technology (IT) security staff say they need to increase their…
Read More
08Apr 2018 by richard@baronsoftware.com

Avast claims its secure browser is 30 percent faster than yours

News Items
Avast claims its secure browser is 30 percent faster than yours Avast has updated its browser to give users greater control over their online privacy. According to the company, its renamed Avast Secure Browser (formerly SafeZone) is designed to plug the security gaps that result from users' misplaced protection expectations. Features such as Stealth Mode, HTTPS Encryption, anti-tracking and anti-fingerprinting have been designed to account for the 69 percent of UK consumers who believe standard private-browsing modes will anonymize their identity, and the 81 percent who believe their browser would alert them to web-based threats, such as malicious cryptomining and extensions. Based on the Chromium open source platform, the browser also includes Bank Mode, an extension guard, anti-phishing features, a password manager and Flash Protect, designed to free-up computer resources and preserve battery…
Read More
04Apr 2018 by richard@baronsoftware.com

Drupal under attack for one million sites

News Items
Drupal under attack for one million sites The team behind the popular open-source CMS Drupal is urging admins to update their sites to ward off a nasty bug that could leave their sites “highly compromised” to attackers, according to the organization. The effected versions (Drupal  6, 7 and 8) of the CMS power over one million websites on the internet. Drupal has marked the security risk as “highly critical” and warns that any visitor to the site could theoretically hack it through remote code execution due to a missing input validation. “This potentially allows attackers to exploit multiple attack vectors on a Drupal site, which could result in the site being completely compromised,” the group noted in a blog post. Drupal sent out an alert last week, telling users that they’d be dropping a “highly critical…
Read More