The_IT_Nerd - Network

FCC creates council to counter Chinese threatshttps://itnerd.blog/2025/03/14/fcc-creates-council-to-counter-chinese-threats/

FCC creates council to counter Chinese threats

https://itnerd.blog/2025/03/14/fcc-creates-council-to-counter-chinese-threats/

PII Exposed Online in Healthcare Marketplace Connecting Facilities and Nurses Data LeakCybersecurity researcher Jeremiah...

PII Exposed Online in Healthcare Marketplace Connecting Facilities and Nurses Data Leak

Cybersecurity researcher Jeremiah Fowler discovered a non-password-protected database that contained over 86,000 records belonging to ESHYFT -- a New-Jersey-based HealthTech company that operates in 29 states. This database contained 86,341 records including PII of users. A discovery that I previously covered here. Erich Kron, Security Awareness Advocate at KnowBe4 had this to say: …

https://itnerd.blog/2025/03/14/pii-exposed-online-in-healthcare-marketplace-connecting-facilities-and-nurses-data-leak/

FCC creates council to counter Chinese threatsThe FCC announced it is creating a national security council to improve US defenses against...

FCC creates council to counter Chinese threats

The FCC announced it is creating a national security council to improve US defenses against Chinese cyber-attacks and in an effort to " the strategic competition with China over critical technologies” such as 5G, AI, and quantum computing. The new FCC chair Brendan Carr said he was establishing the council to focus on the “persistent and constant threats from foreign adversaries, particularly the Chinese Communist party”.

https://itnerd.blog/2025/03/14/fcc-creates-council-to-counter-chinese-threats/

CISA Puts Out Advisory On Medusa RansomwareYesterday, CISA released a joint advisory on the Medusa Ransomware that provided tactics,...

CISA Puts Out Advisory On Medusa Ransomware

Yesterday, CISA released a joint advisory on the Medusa Ransomware that provided tactics, techniques, and procedures (TTPs), indicators of compromise (IOCs), and detection methods associated with the ransomware group. As of February 2025, Medusa has impacted over 300 victims across critical infrastructure sectors, including medical, education, law, insurance, technology, and manufacturing. You can read the advisory here.…

https://itnerd.blog/2025/03/13/cisa-puts-out-advisory-on-medusa-ransomware/

John Gruber Rips Apple Over The Apple Intelligence DebacleFor those who don't know, John Gruber has been writing and covering the Apple...

John Gruber Rips Apple Over The Apple Intelligence Debacle

For those who don't know, John Gruber has been writing and covering the Apple space for a couple of decades now. He's even been on stage interviewing top Apple execs. So when he says something about Apple, you should pay attention. With that in mind, Gruber has posted this piece on his site and it should get the attention of people within Apple.

https://itnerd.blog/2025/03/13/john-gruber-rips-apple-over-the-apple-intelligence-debacle/

The Evolution of the Worst Passwords Over the Last 10 Years Here's some fascinating research done by Safety Detectives on the...

The Evolution of the Worst Passwords Over the Last 10 Years

 Here's some fascinating research done by Safety Detectives on the evolution of the most commonly used passwords, their typical length and complexity, and the behaviors that influence how people create them. Key findings at a glance: NordPass' sixth annual report on the most common passwords for 2024 reveals that "123456" was the most frequently used password worldwide in 2024, used 3,018,050 times in the…

https://itnerd.blog/2025/03/13/the-evolution-of-the-worst-passwords-over-the-last-10-years/

138k patients have had their personal data stolen from a NYC radiologistRansomware group Fog today claimed responsibility for a November...

138k patients have had their personal data stolen from a NYC radiologist

Ransomware group Fog today claimed responsibility for a November 2024 data breach at University Diagnostic Medical Imaging that compromised 138,080 patients' names, addresses, dates of birth, referring physicians, medical treatments, and diagnoses. In a blog published today reporting this news, Paul Bischoff, Consumer Privacy Advocate at Comparitech, wrote: "Fog is a ransomware gang that first…

https://itnerd.blog/2025/03/13/138k-patients-have-had-their-personal-data-stolen-from-a-nyc-radiologist/

Rogers Recognized as Canada’s Most Reliable Internet by OpensignalRogers Communications announced today that it has been named the most...

Rogers Recognized as Canada’s Most Reliable Internet by Opensignal

Rogers Communications announced today that it has been named the most reliable internet in Canada by Opensignal, the leading global provider of independent network experience insights and market performance. The Opensignal report shows that in Canada, Rogers wins for overall reliability experience, consistent quality and download speed. Last month, Rogers was also recognized as Canada's most reliable…

https://itnerd.blog/2025/03/13/rogers-recognized-as-canadas-most-reliable-internet-by-opensignal/

KnowBe4’s KB4-CON 2025 to Spotlight AI’s Dual Role in Cybersecurity Threats and DefensesKnowBe4, the world-renowned cybersecurity...

KnowBe4’s KB4-CON 2025 to Spotlight AI’s Dual Role in Cybersecurity Threats and Defenses

KnowBe4, the world-renowned cybersecurity platform that comprehensively addresses human risk management, announced registration details and its lineup of speakers who will cover the latest topics of cybersecurity at the organization's annual conference KB4-CON 2025 at the Gaylord Palm Resort & Convention Center in Orlando, Florida, April 7-9. This premier cybersecurity event will…

https://itnerd.blog/2025/03/12/knowbe4s-kb4-con-2025-to-spotlight-ais-dual-role-in-cybersecurity-threats-and-defenses/

ESET Canada Announces 2024 Partner of the Year AwardsESET Canada is proud to announce the winners of its 2024 Canadian Partner of the Year...

ESET Canada Announces 2024 Partner of the Year Awards

ESET Canada is proud to announce the winners of its 2024 Canadian Partner of the Year Awards, recognizing the outstanding achievements and contributions of our reseller ecosystem, which contributed to our above-market SMB growth and success in the past year. 2024 Highlights: Services Growth: ESET Canada saw a remarkable 70% increase in services over the previous year, driven by the adoption of ESET Managed Detection…

https://itnerd.blog/2025/03/12/eset-canada-announces-2024-partner-of-the-year-awards/

China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 DaysA case study published yesterday has detailed the intrusion...

China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 Days

A case study published yesterday has detailed the intrusion attributed to the notorious Chinese threat actor Volt Typhoon into the US electric grid. The threat actors had been in the Littleton Electric Light and Water Departments (LELWD) — a small public power utility in MA — network for over 300 days. Ensar Seker, Chief Security Officer at SOCRadar had this comment:

https://itnerd.blog/2025/03/12/chinas-volt-typhoon-hackers-dwelled-in-us-electric-grid-for-300-days/

Guest Post: Canadian Business Travel Bookings Increased 4% for Domestic Flights, 8% for International Flights in 2024Global travel has...

Guest Post: Canadian Business Travel Bookings Increased 4% for Domestic Flights, 8% for International Flights in 2024

Global travel has shown a significant rebound, with volume nearing pre-pandemic levels. A development, that at SAP Concur, we’ve seen in a rebound in business travel bookings. “Overall, Canadian domestic air travel volume for business trips is up 4 per cent, year over year,” said Brian Veloso, Managing Director at SAP Concur Canada. “The return to…

https://itnerd.blog/2025/03/12/guest-post-canadian-business-travel-bookings-increased-4-for-domestic-flights-8-for-international-flights-in-2024/

IDEMIA Public Security Secures Its Leadership in the Market with #1 Rankings on all Fingerprint Related BenchmarksIDEMIA Public Security...

IDEMIA Public Security Secures Its Leadership in the Market with #1 Rankings on all Fingerprint Related Benchmarks

IDEMIA Public Security once again secures its leadership in the market with #1 rankings on all fingerprint related benchmarks, including the Evaluation of Latent Fingerprint Technologies (ELFT), in the latest National Institute of Standards and Technology’s (NIST) results. These industry-leading advancements enable law enforcement agencies, border…

https://itnerd.blog/2025/03/12/idemia-public-security-secures-its-leadership-in-the-market-with-1-rankings-on-all-fingerprint-related-benchmarks/

Over 110,000 iOS apps expose user data research findsApple's App Store is considered the gold standard for security, but Cybernews...

Over 110,000 iOS apps expose user data research finds

Apple's App Store is considered the gold standard for security, but Cybernews researchers analyzed 156,080 randomly selected iOS apps – around 8% of the apps present on the App Store – and uncovered a massive oversight: 71% of them expose sensitive data, including API keys, cloud storage credentials, and financial information. The security of iOS apps remains under-researched, and this is the first research of this…

https://itnerd.blog/2025/03/12/over-110000-ios-apps-expose-user-data-research-finds/

Lazarus Strikes npm Again With New Wave of Malicious PackagesResearchers have discovered North Korea’s Lazarus Group once again...

Lazarus Strikes npm Again With New Wave of Malicious Packages

Researchers have discovered North Korea’s Lazarus Group once again infiltrating the npm ecosystem. This time Lazarus is deploying six new malicious packages, which have been downloaded 330 times. The packages are designed to compromise developer environments, steal credentials, extract cryptocurrency data, and deploy a backdoor. You can go into the weeds by reading this:  Ensar Seker, CSO at cybersecurity…

https://itnerd.blog/2025/03/12/lazarus-strikes-npm-again-with-new-wave-of-malicious-packages/

ServiceNow Yokohama release empowers businesses to navigate complexity withenhanced automation, stronger governance, and seamless...

ServiceNow Yokohama release empowers businesses to navigate complexity withenhanced automation, stronger governance, and seamless workflow intelligence

ServiceNow today unveiled the Yokohama platform release, advancing automation, governance, and workflow intelligence to help businesses navigate operational complexity. With this release, organizations can accelerate application development, improve workflow performance, and enhance customer experiences—all while…

https://itnerd.blog/2025/03/12/servicenow-yokohama-release-empowers-businesses-to-navigate-complexity-withenhanced-automation-stronger-governance-and-seamless-workflow-intelligence/

ServiceNow’s latest platform release adds to thousands of AI agents across CRM, HR, IT, and more for faster, smarter workflows and maximum...

ServiceNow’s latest platform release adds to thousands of AI agents across CRM, HR, IT, and more for faster, smarter workflows and maximum business impact

ServiceNow today announced the Yokohama platform release, unleashing new AI agents across CRM, HR, IT, and more, for faster, smarter workflows and maximum, end-to-end business impact. These latest innovations include teams of preconfigured AI agents that deliver productivity and predictable outcomes from day one, on…

https://itnerd.blog/2025/03/12/servicenows-latest-platform-release-adds-to-thousands-of-ai-agents-across-crm-hr-it-and-more-for-faster-smarter-workflows-and-maximum-business-impact/

Apple Drops Software Updates Today… And Forcibly Turns On Apple Intelligence AGAIN…. WTF?When iOS 18.3 dropped, users who had turned...

Apple Drops Software Updates Today… And Forcibly Turns On Apple Intelligence AGAIN…. WTF?

When iOS 18.3 dropped, users who had turned off Apple Intelligence found out very quickly that the software update turned it back on without their permission. At the time I said this: This is the single dumbest thing that Apple has done in a very long time. I say that because you should be able to opt into things rather than be forced to opt out.

https://itnerd.blog/2025/03/11/apple-drops-software-updates-today-and-forcibly-turns-on-apple-intelligence-again-wtf/

#PSA Apple once again via today’s software updates has decided that it was a good idea to turn on Apple Intelligence if you turned it off....

#PSA Apple once again via today’s software updates has decided that it was a good idea to turn on Apple Intelligence if you turned it off. Apple really has to learn how to respect what users choose rather than do stuff like this.

Apple just dropped a bunch of updates for iPhone, iPad, Mac, Apple TV and Vision Pro. There are security updates in them that fix an issue...

Apple just dropped a bunch of updates for iPhone, iPad, Mac, Apple TV and Vision Pro. There are security updates in them that fix an issue that has already been exploited.

More information here: https://support.apple.com/en-ca/122281