Microsoft slaps Windows 11 update hold on hardware connected to eSCL devices
Scanners, printers, and... fax machines Microsoft has confirmed that Windows 11 24H2 has issues with USB-connected devices that support the Scanner Communication Language (eSCL) protocol. A compatibility hold has been applied to the hardware.
One of the most disturbing trends in :
code = edoc.
Hacker News: Chinese Hackers Use GHOSTSPIDER Malware to Hack Telecoms Across 12+ Countries
The Register: FLTK hits 1.4, arrives speaking Wayland and with better HiDPI support
Totally True
it?Long toot, but TLDR Im looking for advice from fellow IT and network managers/maintainers
Planning a network overhaul for my 20 person employer for a few months from now. Likely going Unifi for as much as possible for the tight integration and simple management for this poor solo IT guy. Im not looking for input on that decision at this time, unless you have a really good reason.
Unfortunately, everyone is used to a BYOD system when it comes to WFH. They download the NetExtender VPN on their personal machine and RDP into their workstation in the office. I am trying to figure out how best to lock this down without pissing everyone off (yet).
Obvious measures already in effect include MFA for VPN access and geo-based IP blocking. Id love to lock it down further though, and for that I am looking into an RDP gateway in combination with VPN.
For off-site company-owned devices, those would use the Unifi VPN authenticated via AD and MFA. Connections would be based on an allowlist of known safe workstations and they would be allowed normal network access.
For personal devices, Im considering an RDP gateway (with MFA) to monitor and limit connections from personal devices to employee workstations only (I.e. no server access). I could expose that publicly and ensure its locked down with MFA and give the host server minimal permissions and access. However, Im wondering if it would make sense to place that behind the VPN as well.
Untrusted VPN connections could go to their own VLAN, only allowed access to the RDP gateway and nothing else. Both would authenticate with the same LDAP credentials, so not much benefit there. My main consideration is 0 days and other vulns. A 2 layered approach would ensure that a vulnerability in one system is still mitigated by the other.
I could see this creating unnecessary overhead for employees to connect though, and may not be worth the perceived extra security.
Anyone have any input Id love some advice here!
Acabamos de publicar: s19e02: Esto es oro para mis odos. 'sGuideToMurder :Prophecy 'sFlorida
FLTK hits 1.4, arrives speaking Wayland and with better HiDPI support
A mere 13 years since the last point release FLTK, one of the oldest and most stable FOSS toolkits for programming GUI apps, is back with new shiny.
Apple fixes 2 Zero-Days exploited to breach MacOS Systems. :appleinc:
Apple has released emergency security updates for macOS Sequoia that fix two zero-day vulnerabilities that may have been actively exploited on Intel-based Mac systems. As per usual, Apple didnt share details about the attacks in which patched vulnerabilities are exploited.
CVE-2024-44309 & CVE-2024-44308
Event-Driven Ansible is here and it opens a whole new world of possibilites for working with Ansible. This article gives an introduction to it and shows a minimal example.
Read now :scremcat:
# # :NOJPTPM :NOJPWDM :NOJPZTM :HUMANRIGHTS
Hacker News: RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks
Ein herzliches Dankeschn und Shoutout an den :Rheinwerk: aus , der uns auf Bonn.social mit Bchern rund um -Themen, aber auch , und beglckt und uns ein weiteres Jahr untersttzt.
Ihr wollt den Server :bonnsocial: Bonn.social auch als Firma, Unternehmen oder Organisation untersttzen Sprecht uns an!
Und natrlich: Folgt dem !
The Register: US senators propose law to require bare minimum security standards
US senators propose law to require bare minimum security standards
In case anyone forgot about Change Healthcare American hospitals and healthcare organizations would be required to adopt multi-factor authentication (MFA) and other minimum cybersecurity standards under new legislation proposed by a bipartisan group of US senators.
Payoneer : -
Adapting to the changing Technology Landscape
The article discusses how the landscape is changing rapidly, with the rise of and is revolutionizing industries and daily life, and professionals need to adapt to these changes by embracing , , and .
Fachinformatiker*in Systemintegration (m/w/d), Vollzeit, EG 9a TV-L, unbefristet, 24/D12
Feierliche Erffnung des DD-IX
Gestern war es endlich so weit! Nach einem Jahr intensiver Arbeit wurde der Dresden Internet Exchange (kurz: DD-IX), der erste ffentliche Internetknoten in Dresden, ganz offiziell scharf geschaltet.
Dieses technische Projekt steht fr Fortschritt, Innovation und regionale Zusammenarbeit.
Wir sind stolz, als Frdermitglied Teil dieser wichtigen Entwicklung zu sein!
Mehr Infos:
AI IT
Bing Wallpaper app, now in Windows Store, accused of cookie shenanigans
Microsoft free tool snooping on users Surely not! If you've been tempted to download the Bing Wallpaper app to spice up your Windows 11 desktop backgrounds, you may want to think twice.
A Coursera AI-generated test for one of the modules in my learning program gave me:
- a question with no valid answers (although I selected the correct one from the official documentation)
- a question allowing multiple answers, all of five valid
So far, not so good.
Hacker News: Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks
The Register: Intel locks down $7.86B in funding from US CHIPS Act
Kwetsbaarheden in VMware Aria Operations Verholpen
VMware heeft belangrijke beveiligingsproblemen in hun Aria Operations-software aangepakt. Deze kwetsbaarheden kunnen aanzienlijke risico's met zich m...
Lees verder op:
Intel locks down $7.86B in funding from US CHIPS Act
Outgoing administration rushes to allocate money ahead of Inauguration Day Intel has finalized an agreement with the US Department of Commerce to receive up to $7.86 billion awarded via the CHIPS and Science Act, funding that has come into question since the election.
Podcast avec Benoit Pasteau sur l'volution fascinante du endpoint !
De Citrix aux navigateurs modernes, dcouvrez comment la distribution d'applications a radicalement chang. Le navigateur devient le nouveau "endpoint" et transforme la scurit en entreprise.
Un pisode essentiel pour comprendre les enjeux actuels de la scurit numrique.
Web:
Spotify:
YouTube:
La faillite de Northvolt risque de refroidir les investisseurs : "aprs un tel fiasco, les investisseurs se montrent plus rticents financer des projets lis la transition nergtique en Europe."
Google must face 7B UK class action over search engine dominance
Ad slinger alleged to have abused position, resulting in higher prices for consumers Google must face a 7 billion ($8.8 billion) claim in the UK over allegations it abused its search engine dominance, a tribunal has ruled.
Der beste Verkufer seiner eigenen Produkte - - in den wegen "Hack first, ask later" angeklagt:
"Wie aus der am Freitag verffentlichten Anklageschrift hervorgeht, soll Nicholas Michael Kloster gezielt in die IT-Infrastruktur mehrerer Organisationen eingedrungen sein, um im Anschluss seine Dienste als Sicherheitsberater anzubieten. Dabei ging er nicht wie ein seriser Ethical vor, sondern benahm sich wie die Axt im Walde"
Hacker News: Intruder Launches Intel: A Free Vulnerability Intelligence Platform For Staying Ahead of the Latest Threats
The Register: Another 'major cyber incident' at a UK hospital, outpatients asked to stay away
De pagina die je hebt aangevraagd bestaat helaas niet. Maak je geen zorgen, we hebben enkele geweldige suggesties om je verder te helpen! Gebaseerd op de trefwoorden in de URL die je probeerde te bezo...
Lees verder op:
Another 'major cyber incident' at a UK hospital, outpatients asked to stay away
Third time this year an NHS unit's IT systems have come under attack A UK hospital is declaring a "major incident," cancelling all outpatient appointments due to "cybersecurity reasons."
I have had something against using IDEs forever personally, because I just like the satisfaction of being able to program anywhere, with any text editor, and knowing/typing all the correct syntax by hand.
I still love working with just a text editor and writing everything manually, but I do have to admit that I like .
I don't even use any of its features except having a little terminal in a window at the bottom of the frame to insta-test my code, but it's nice.
: that that you can't on is ...
's usually ...
And, has some for the ... ...
He's a and in ... He also but, ... ...
and ... ...!
'll be and even though we'll be on a ...
of ...
What's ...
:wolfparty:
the most open operating system
From:
Asking for a Friend of mine, who's working in the IT and looks for a new Employer because the actual one sucks.
Job Profile:
Typescript/Python/Go (Javascript optional)
Working Area
DevOps / Infrastructure
(Containerization, Kubernetes, Docker, cloud infrastructure)
Location: NRW and surrounding.
Remote work as an option.
Wage per Year
85K/95K
Contact:
I forward inquiries!
Thanks for Boosting this Post in advance.
QNAP and Veritas dump 30-plus vulns over the weekend
Just what you want to find when you start a new week Taiwanese NAS maker QNAP addressed 24 vulnerabilities across various products over the weekend.
The Register: UK council still hadn't fully costed troubled Oracle project 2 years in