Our Picks
Top content from across the community, hand-picked by us.
there are difficulties in opening the site Raidforums
Uploader posted a topic in IT News and Technology,
Today, the date: 07.02.2022 20:00h. GMT+3
For more than an hour and a half there has been an error in the processing of data on the sit raidforums.com
we wish the site to be updated or fixed soon
For more than an hour and a half there has been an error in the processing of data on the sit raidforums.com
we wish the site to be updated or fixed soon
-
-
- 23 replies
Picked By
Vaxert,
Some versions of Android in use by government employees go all the way back to 2017's Android 8, and that's a huge cybersecurity problem.
Vaxert posted a topic in IT News and Technology,
Android, the most popular mobile operating system in the world, runs on plenty of devices used
The fact that nearly a quarter of government employees are running Android 8, which has over 636 known vulnerabilities, makes it a serious security risk. The report notes that the second half of 2020 saw a huge spike in malicious app activity: In the fourth quarter alone there was a 20-times increase in year-over-year malicious app encounters on government devices. Vulnerabilities found on government devices included:
Connections to servers in foreign countries,
Access to device file systems,
Camera/microphone access,
Excessive permissions that allow apps to see data from other apps on a device.
In contrast to Android devices, iOS users in the government sector show a high rate of adoption of the latest iOS version, with 67.8% on iOS 14. "Government agencies or departments may choose to delay updates until their proprietary apps have been tested. This delay creates a vulnerability window during which a threat actor could use a mobile device to gain access to the
organization's infrastructure and steal data," the report notes.
A second bright spot in the report is the contrast between managed and BYOD devices used by government employees: On the federal side, 91.34% of mobile devices are government- managed, and at the state and local level 75.69% are managed.
Unmanaged personal devices are more convenient for employees, but the report points out that the tradeoff is additional exposure to phishing attacks. Only 2.66% of federally-managed mobile devices are exposed to phishing attacks, versus 16.62% of federally-used unmanaged devices. At the state and local level those numbers are 6.18% for managed and 11.02% for unmanaged.
The fact that nearly a quarter of government employees are running Android 8, which has over 636 known vulnerabilities, makes it a serious security risk. The report notes that the second half of 2020 saw a huge spike in malicious app activity: In the fourth quarter alone there was a 20-times increase in year-over-year malicious app encounters on government devices. Vulnerabilities found on government devices included:
Connections to servers in foreign countries,
Access to device file systems,
Camera/microphone access,
Excessive permissions that allow apps to see data from other apps on a device.
In contrast to Android devices, iOS users in the government sector show a high rate of adoption of the latest iOS version, with 67.8% on iOS 14. "Government agencies or departments may choose to delay updates until their proprietary apps have been tested. This delay creates a vulnerability window during which a threat actor could use a mobile device to gain access to the
organization's infrastructure and steal data," the report notes.
A second bright spot in the report is the contrast between managed and BYOD devices used by government employees: On the federal side, 91.34% of mobile devices are government- managed, and at the state and local level 75.69% are managed.
Unmanaged personal devices are more convenient for employees, but the report points out that the tradeoff is additional exposure to phishing attacks. Only 2.66% of federally-managed mobile devices are exposed to phishing attacks, versus 16.62% of federally-used unmanaged devices. At the state and local level those numbers are 6.18% for managed and 11.02% for unmanaged.
-
- 6 replies
Picked By
Vaxert,
Microsoft hack fallout substantial for Dutch servers, watchdog says
Vaxert posted a topic in IT News and Technology,
THE HAGUE (Reuters) - Dutch authorities on Tuesday said that the fallout for the Netherlands from a hack on Microsoft Corp’s Exchange was substantial, with at least 1,200 Dutch servers likely to have been affected.
“The National Cyber Security Centre observes that, as a result of vulnerabilities, data is being stolen, malware is placed, back doors are being built in and mailboxes are offered for sale on the black market,” the government cyber security watchdog said, urging companies to run updates.
The Dutch watchdog’s comments follow warnings from authorities in the United States and Europe about weaknesses found in Microsoft’s Exchange Server software.
Britain’s cyber security body, for example, last week urged organisations to install the latest Microsoft updates which have a patch that fixes the vulnerability.
Microsoft was not immediately available for comment.
Reporting by Stephanie van den Berg; Editing by David Goodman and Jane Merriman
“The National Cyber Security Centre observes that, as a result of vulnerabilities, data is being stolen, malware is placed, back doors are being built in and mailboxes are offered for sale on the black market,” the government cyber security watchdog said, urging companies to run updates.
The Dutch watchdog’s comments follow warnings from authorities in the United States and Europe about weaknesses found in Microsoft’s Exchange Server software.
Britain’s cyber security body, for example, last week urged organisations to install the latest Microsoft updates which have a patch that fixes the vulnerability.
Microsoft was not immediately available for comment.
Reporting by Stephanie van den Berg; Editing by David Goodman and Jane Merriman
-
- 7 replies