NYC Geeks - New York City's Computer Repair and IT Service Experts!

Good Morning

Welcome user! NYC Geeks is the premier computer repair and technology service provider for homes and businesses in the New York metropolitan area.

Learn About Us

Technology News

Amazon plans to make Prime shipping one-day by default:
Still building up support for more products, ZIP codes before nationwide rollout.
Russia launches sub that will carry doomsday nuke drone torpedo:
Giant sub 27 years in the making, Belogrod is the mother of all "special project" boats.
AT&T says 5G will be priced like home Internet—pay more for faster speeds:
Users "are willing to pay a premium" for 500Mbps or 1Gbps, AT&T CEO says.
In meeting with Twitter chief, Trump complains about lost followers:
After bot shutdown, Trump and Dorsey discuss "health of public conversation on Twitter."
Leaked report: crashed Russian Air Force MiG-31 was shot down by wingman:
Foxhound was shot down because of “poor exercise design;” crew survived.
Millimeter-wave 5G isn’t for widespread coverage, Verizon admits:
Verizon and T-Mobile confirm 5G's highest speeds will only be for select areas.
Twitter shuts down 5,000 pro-Trump bots retweeting anti-Mueller report invective:
Bots were tied to account formerly used for pro-Saudi messaging.
Bug in French government’s WhatsApp replacement let anyone join Élysée chats:
Researcher found bug in email validation that let him log in and join "rooms" in Tchap app.
Loose online lips sink hack targeting governments and embassies:
"EvaPiks" spills code and techniques used in ongoing hack campaign.
Millimeter-wave 5G will never scale beyond dense urban areas, T-Mobile says:
T-Mobile CTO says 5G's high-frequency spectrum won't cover rural America.
Charter avoids getting kicked out of New York, agrees to new merger conditions:
Charter must expand its own network and pay $12 million to fund more broadband.
Ars asks: What’s stopping your workplace from adopting newer technology?:
We've got a survey and we want your gripes & success stories on the future of work.
A mystery agent is doxing Iran’s hackers and dumping their code:
Iran seems to be getting its own taste of a Shadow Brokers-style leak of secrets.
Marcus Hutchins, slayer of WannaCry worm, pleads guilty to malware charges:
Hutchins once proclaimed his innocence. Now he admits he created the Kronos bank trojan.
Unexpected protection added to Microsoft Edge subverts IE security:
Permissions that Edge added to downloaded files break important security feature.
In new gaffe, Facebook improperly collects email contacts for 1.5 million:
Remember when Facebook asked for email passwords? The blunder just got worse.
The wave of domain hijackings besetting the Internet is worse than we thought:
Despite widespread attention since January, DNS campaign shows no signs of abating.
Nikola Motor Company shows off two real trucks and… a new jet ski?:
The Tesla competitor had a very Tesla kind of product reveal.
T-Mobile/Sprint merger is in danger of being rejected by DOJ:
Mobile carriers face skeptical regulators in attempt to obtain merger approval.
Google Fiber exits Louisville, pays city $3.8M to clean up the mess it left:
Louisville will clean up exposed wires itself over next 20 months.

Security Alerts

ISC Releases BIND Security Updates:
Original release date: April 25, 2019

The Internet Systems Consortium (ISC) has released updates that address vulnerabilities in versions of ISC Berkeley Internet Name Domain (BIND). A remote attacker could exploit these vulnerabilities to cause a denial-of-service condition.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the ISC advisories for CVE-2018-5743, CVE-2019-6467, and CVE-2019-6468 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.
Google Releases Security Update for Chrome:
Original release date: April 23, 2019

Google has released Chrome version 74.0.3729.108 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that an attacker could exploit to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Chrome Release and apply the necessary update.

This product is provided subject to this Notification and this Privacy & Use policy.
Dutch NCSC Releases Updated TLS Guidelines:
Original release date: April 23, 2019

The Dutch National Cyber Security Centre (NCSC) has published an update to their Transport Layer Security (TLS) protocol guidelines, which aim to improve TLS configuration security.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Dutch NCSC IT Security Guidelines for Transport Layer Security.

This product is provided subject to this Notification and this Privacy & Use policy.
Drupal Releases Security Updates:
Original release date: April 17, 2019 | Last revised: April 18, 2019

Drupal has released security updates to address multiple vulnerabilities in Drupal Core. A remote attacker could exploit some of these vulnerabilities to take control of an affected website.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Drupal’s security advisories SA-CORE-2019-005 and SA-CORE-2019-006 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.
Cisco Releases Security Updates:
Original release date: April 17, 2019

Cisco has released a security update to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Cisco Security Advisory page and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.
ICSJWG Spring Meeting April 23–25:
Original release date: April 17, 2019

The Industrial Control Systems Joint Working Group (ICSJWG)—a collaborative and coordinating body operating under the Critical Infrastructure Partnership Advisory Council framework—will hold the 2019 ICSJWG Spring Meeting in Kansas City, MO, April 23–25, 2019. ICSJWG facilitates information sharing to reduce the risk to the Nation’s industrial control systems.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages interested participants to visit the ICSJWG website to register for the Spring Meeting by April 17, 2019, and for additional information.

This product is provided subject to this Notification and this Privacy & Use policy.
Multiple Vulnerabilities in Broadcom WiFi Chipset Drivers :
Original release date: April 17, 2019

The CERT Coordination Center (CERT/CC) has released information on multiple vulnerabilities in Broadcom Wi-Fi chipset drivers. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the CERT/CC Vulnerability Note VU#166939 for more information and refer to vendors for appropriate updates, when available.

This product is provided subject to this Notification and this Privacy & Use policy.
Oracle Releases April 2019 Security Bulletin:
Original release date: April 16, 2019

Oracle has released its Critical Patch Update for April 2019 to address 297 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Oracle April 2019 Critical Patch Update and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.
Apache Releases Security Updates for Apache Tomcat:
Original release date: April 14, 2019 | Last revised: April 15, 2019

The Apache Software Foundation has released Apache Tomcat versions 7.0.94, 8.5.40, and 9.0.19 to address a vulnerability. A remote attacker could exploit this vulnerability to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Apache security advisory for CVE-2019-0232 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.
Multiple Vulnerabilities in WPA3 Protocol:
Original release date: April 12, 2019

The CERT Coordination Center (CERT/CC) has released information on vulnerabilities—referred to as Dragonblood—in WPA3 protocol. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review CERT/CC’s Vulnerability Note VU#871675 for more information and refer to vendors for appropriate updates, when available.

This product is provided subject to this Notification and this Privacy & Use policy.
:
:
:
:
:
:
:
:
:
:

Good Morning wb_sunny

Request Support live_help

Learn About Us info

Technology News view_quilt

Security Alerts https

Good Morning

Request Support

Learn About Us

Technology News

Security Alerts