Security breach involving Microsoft’s DB

A very large security breach involving Microsoft’s customer support database resulted from incorrect security settings in Azure.

Microsoft recently revealed that there was a security breach incident in an internal customer database that was exposed online last month. According to the US company, the database stored anonymous user statistics, which were randomly displayed online between December 5 and December 31.

The data was first discovered by security researcher Bob Diachenko of Security Discovery, who reported it to Microsoft. Although the report was made on New Year’s Eve, Microsoft immediately resolved the security issue. According to Diachenko, the database contained data from 5 different servers, but storing the same files. Data where it was used to simplify search functions.

The servers had nearly 250 million listings stored, including information such as e-mails, IP addresses and customer support data. However, the listings did not contain any personal user information, according to Microsoft. Of course, it has already begun to alert customers whose data was exposed, although it has not yet found malicious use of this data.

Microsoft said the database was exposed by incorrect security settings in Azure, with the update last updated on December 5.

Google identified multiple vulnerabilities in Safari

A Google team has identified multiple vulnerabilities in Apple’s famous browser, which has resulted in users’ movements being unknowingly recorded.

According to Financial Times reports, the bugs were found in Safari (Intelligent Tracking Prevention), which protects users from tracking their movements and their personal data. The report focuses on a document edited by a Google team working on Cloud services. In total, the researchers identified five different attacks that could occur as a result of Safari security errors.

The researchers said that this clever feature of Safari essentially left the user data exposed because of the feature to tacitly store information about the sites users visited.

One of the bugs they discovered could allow a hacker to track and track users’ movements while other bugs could reveal what sites users have searched for on search engine pages. In other words, Apple created a smart feature to prevent just that, but in the end it did just the opposite.

Google informed Apple about the vulnerabilities last August and the US company fixed them. But Google Chrome CEO Justin Schuh recently said on Twitter that Safari’s real vulnerabilities have not yet been fixed. So it would be good for anyone using the relevant smart feature to turn it off for the time being.

Avast antivirus program is selling its users’ data to major companies…

Research conducted by reporters from Motherboard and PCMag revealed that the company behind the popular Avast antivirus program is selling its users’ data to major companies such as Google, Microsoft, Pepsi and Home Depot.

According to the report, the company was collecting data from its Avast antivirus software, which it then handed over to its subsidiary, Jumpshot, which then sorted them out and sometimes sold them in return for millions of dollars. Although Avast, during its installation, lets users share their data, Motherboard and PCMag’s research suggests that many users had no idea that Jumpshot was selling their data.

At the heart of the research were several big names from various industries. It is not known who they were, are or are going to become clients of, but the list of companies that appeared to have partnered with Jumpshot includes the names of Expedia, Intuit, Sephora, L’Oréal, Keurig, Condé Nast and more. Microsoft, however, has stated that it is not currently working with Jumpshot. Yelp said it only worked with Jumpshot once, while Google did not respond to requests from Motherboard and PCMag to comment on the report’s findings.

The data being sold includes everything imaginable, from search engine searches to Google Maps, site searches to Google Maps, business activity on LinkedIn, to YouTube channel visits or pornographic websites. It is assumed that this data does not include personal information, such as names or email addresses, but some experts have expressed concerns that some users may be anonymized.

One product that Jumpshot sells is called “All Clicks Feed” and tracks users’ clicks on the websites they visit with great accuracy. The product is advertised as follows: “Every search. Every click. Every purchase. On every website. ” At least one customer, the advertising company Omnicom Media Group, has purchased the product. According to Motherboard and PCMag, Omnicom Media Group paid Jumpshot over $ 2 million last year to gain access to data.

This is not the first time we have learned that Avast is collecting user data. A few months ago, Mozilla removed Avast’s Online Security and SafePrice extensions from Firefox as well as all Avast AVG products after finding that they were collecting much more data than necessary. The collection and sale of highly detailed information to its users is undoubtedly frustrating and worrying for a company such as Avast, which is supposed to have a primary purpose of protecting its users.

Facebook plans to ask its 2 billion users to check their privacy settings in the coming weeks.


The notification will appear in the News Feed. As soon as social network users click on “Start Privacy Checkup”, they will be redirected to the updated Privacy Checkup tool to determine who can see their data and enhance their account security.

fb.jpg.7f65860aeecfd18c30556b4ca1411a62.jpg

Facebook also recently launched a new global tool, the Off-Facebook Activity, that enables users to have a snapshot of the data the social network receives from websites and applications other than Facebook (used to serve targeted ads) ) and the ability to disconnect data from their account. For example, if you visited a website for a pair of sneakers, and then see a Facebook ad with sneakers or similar sports products, it’s because the website you visited shared data with Facebook. You can find the new feature in Settings: Settings> Your Facebook Information> Off-Facebook Activity.

fb2.jpg.f81c6b6cfe178b3fd6616b51546423af.jpg

The tools above are undoubtedly useful to users, and are part of the social network’s effort to improve its image, at least in terms of privacy and security following the Cambridge Analytica scandal and user data management errors. or data breaches.

Later versions of Windows 10 will uninstall Notepad & Paint

With the next releases of Windows 10 coming soon, Notepad, Paint and WordPad become optional programs and the user will be able to uninstall them.

Windows 10 users will soon be able to uninstall Notepad, Paint and WordPad from their computers. Notepad and Paint have been installed automatically since the first version of Windows when Microsoft’s operating system was first released in 1985. WordPad, on the other hand, was installed automatically in 1995 when Windows 95 was released.

Although all three programs offer some basic functions for managing documents and adding simple graphics, none of them could be uninstalled. With the recent 19551 version of Windows 10 available for Insiders, programs can now be removed from the Control Panel.

According to WindowsLatest, the removal of the above programs will be possible with the Windows 20HI release, which is expected to be released by April or May. The programs will be completely removed after the computer restarts and even if the user does some searching, there will be no message suggesting that they will be reinstalled.

Whether or not one chooses to remove them, these three programs only take up 20MB of user storage. Of course, with the ability to remove them, it will be easier to replace them with others that have similar and more features like Notepad ++ or Paint.NET.

Philips Hue lamps could allow a hacker to take control of the network

Until today, Philips Hue lamps could allow a hacker to exploit your network.

Four years ago, security researchers showed that a drone outside the building could crack Philips Hue lamps in a room, with a virus that infected each lamp individually. Today, we are learning that this vulnerability has not been fully restored, and researchers are now finding ways to penetrate users’ home or corporate networks, unless they have installed a patch.

The good news is that if anyone has connected the lamps to the internet, they will have already been automatically updated to version 1935144040, which contains the updated code. Check Point Software, a company specializing in internet security, had informed Philips last November and a patch was released at the end of January.

In 2016 the drone managed to load a malicious update without the user having to take any action. In contrast, the new hacking technique essentially forced the user to re-add the lamp to the network due to a virtual malfunction with color and brightness, thus giving the hacker full control of the user’s network and data. Check Point Software reports that due to design constraints, lamps could still have vulnerabilities that may not have been identified.

Although Check Point has not tried other companies’ lamps, it claims that these vulnerabilities may not be limited to Philips. The Zigbee communication protocol used by Hue is found in dozens of other smart gadgets such as the Amazon Ring bell, the Samsung SmartThings hub, Belkin WeMo devices, Honeywell thermostat and Comcast’s Xfinity alarm system.

So it will be interesting to see how many of these devices have corresponding vulnerabilities and when to fix them before they become dangerous for users’ personal data.

Blizzard Apologizes for Warcraft III: Reforged

ww3 reforged

The company apologizes to anyone who does not have the gaming experience they would like.

Although it’s only a few days since Blizzard released Warcraft III: Reforged, gamers and fans of the game say they are not happy. Blizzard responded by initially apologizing for their unpleasant experience but also saying that several corrections were already under way.

Blizzard says it has already fixed issues related to the game’s servers and influenced the gaming experience of players during the first day of release. It has also already identified the bug that was responsible for the problems with the game’s colors.

In fact, the company is already trying out some fixes that will be integrated into a big update package that is expected to be released by the end of the week. The update will also fix problems with audio, UI environment and animations.

Of course, some other things will remain as Blizzard is unwilling to change them, at least for the time being. It will therefore remain in its original decision not to make any changes to the in-game cut-scenes since it says it wants to retain the original spirit of Warcraft 3. Cut-scenes that looked cinematic when they first appeared on BlizzCon.

Finding An SEO Company That Is Suitable For Your Business

When it comes to searching for an SEO company, your main aim should be to find one that will work efficiently in improving the visibility of your website in leading search engines. There are numerous services that are offered when it comes to search engine optimization. Here are some handy tips that you can keep in mind so as to ensure that you locate a company that would be able to provide quality SEO services.

seo related

1.Consider companies that have built a solid reputation.

When making a shortlist of the companies that you are considering, only include those that have been offering search engine optimization services for a significant amount of time. Not only should the company have a wide client base, but also it should have a track record of having successfully optimized these various websites. Keep in mind though that it is not only about improving a website’s ranking in search listings but the company should also have been able to maintain this.

2.Make a point of interacting with the company’s current clients.

By communicating with clients of the SEO company that you are contemplating, you get a chance to have an idea about the caliber of services that are offered. In addition to this, its clients can also give you some insight as to how the company operates and how it relates to its customers. Make a point of analyzing the different changes the clients’ websites have undergone. This will include enquiring about the increase in their profit margins, taking a note of how their rankings have improved and more. Most companies offering these services will tend to have a section for customer testimonials on their websites. However, take it a step further and contact these clients to find out from the horse’s mouth what type of service to expect.

3.Enquire about the services that you will receive from the SEO company.

As aforementioned, search engine optimization encompasses a scope of services. Some websites may need numerous services at once whereas others may need one or two. Enquire from the company what services they will offer you based on your website’s needs.

4.Enquire about their staff.

A good company that is offering these types of services should have a highly trained staff that has expertise in this field. Keep in mind that the world of search engine optimization tends to change from time to time as new methods are introduced and old methods abandoned. The staff should be able to keep up with the rigorous demands of the industry by staying current.

5.Search for competitive prices.

A good company should be able to offer you competitive rates without compromising on the services that it will deliver.