Language Selection

English French German Italian Portuguese Spanish

Fun With Microsoft

Filed under
Security
  • Intelligence agency National Cyber Security Centre is working with Dixons Carphone on huge data breach

    The National Cyber Security Centre (NCSC), part of GCHQ, said today it is working with Dixons Carphone on mitigation measures, after the retailer said it was investigating a data breach involving 5.9m payment cards and 1.2m personal data records.

    The company announced earlier on that there was an attempt to compromise 5.9m cards in one of the processing systems of Currys PC World and Dixons Travel stores.

  • Spy agency investigates Dixons Carphone bank card data breach
  • Want to Break Into a Locked Windows 10 Device? Ask Cortana (CVE-2018-8140)
  • Cortana Flaw Lets Hackers Access Data, Reset Password On Locked Windows 10 PCs

    Security researchers have found a critical flaw in Windows 10 where Cortana can be manipulated into executing Powershell commands on locked devices.

    Attackers can misuse this vulnerability to retrieve confidential data, reset the password, log into a device, and even execute codes from above the lock screen. The only sense of satisfaction is that it requires physical access to the device.

  • Windows 10 Cumulative Update KB4284835 Might Be Failing to Install as Well

    Windows 10 April 2018 Update has received a new cumulative update as part of this month’s Patch Tuesday cycle, and although it seemed to install correctly at first, it looks like some users are now hitting issues with this new release.
    Windows 10 cumulative update KB4284835 brings several important fixes and it resolves a bug causing the April 2018 Update to fail with a black screen on a number of systems.

    Microsoft says it’s aware of just one known issue in this cumulative update, but as it turns out, KB4284835 fails to install in some cases, eventually causing an infinite loop where the update is listed as successfully installed, only to be re-offered again after every boot.

    There are several posts on reddit pointing to such an issue, and for the time being, no workaround appears to be available. Manually installing the update does not correct this behavior.

More in Tux Machines

It Turns Out RISC-V Hardware So Far Isn't Entirely Open-Source

While they are trying to make it an open board, as it stands now Minnich just compares this RISC-V board as being no more open than an average ARM SoC and not as open as IBM POWER. Ron further commented that he is hoping for other RISC-V implementations from different vendors be more open. Read more

Perl 5.28.0 released

Version 5.28.0 of the Perl language has been released. "Perl 5.28.0 represents approximately 13 months of development since Perl 5.26.0 and contains approximately 730,000 lines of changes across 2,200 files from 77 authors". The full list of changes can be found over here; some highlights include Unicode 10.0 support, string- and number-specific bitwise operators, a change to more secure hash functions, and safer in-place editing. Read more

Today in Techrights

Will Microsoft’s Embrace Smother GitHub?

Microsoft has had an adversarial relationship with the open-source community. The company viewed the free Open Office software and the Linux operating system—which compete with Microsoft Office and Windows, respectively—as grave threats. In 2001 Windows chief Jim Allchin said: “Open source is an intellectual-property destroyer.” That same year CEO Steve Ballmer said “Linux is a cancer.” Microsoft attempted to use copyright law to crush open source in the courts. When these tactics failed, Microsoft decided if you can’t beat them, join them. It incorporated Linux and other open-source code into its servers in 2014. By 2016 Microsoft had more programmers contributing code to GitHub than any other company. The GitHub merger might reflect Microsoft’s “embrace, extend and extinguish” strategy for dominating its competitors. After all, GitHub hosts not only open-source software and Microsoft software but also the open-source projects of other companies, including Oracle, IBM, and Amazon Web Services. With GitHub, Microsoft could restrict a crucial platform for its rivals, mine data about competitors’ activities, target ads toward users, or restrict free services. Its control could lead to a sort of surveillance of innovative activity, giving it a unique, macro-scaled insight into software development. Read more