NYC Geeks - New York City's Computer Repair and IT Service Experts!

Good Morning

Welcome user! NYC Geeks is the premier computer repair and technology service provider for homes and businesses in the New York metropolitan area.

Learn About Us

Technology News

>20,000 Linksys routers leak historic record of every device ever connected:
Linksys said it fixed flaw in 2014. Researcher Troy Mursch disagrees.
Hack on Stack Overflow exposes private data for ~250 users:
Intruders who accessed production system remained undetected for at least five days.
Slack patches vulnerability in Windows client that could be used to hijack files:
Vulnerability could have been used to steal documents, add malware to them.
These firms promise high-tech ransomware solutions—but typically just pay hackers:
Two US data recovery firms offer help. ProPublica finds they paid ransoms and charged extra.
Utility equipment sparked massive California wildfire, investigators say:
PG&E makes its way through bankruptcy, now utility is responsible for 85 deaths.
Trump tries to shut Huawei out of US market with executive order:
Trump moves could stop Huawei from buying US tech or from selling to US firms.
Hackers abuse ASUS cloud service to install backdoor on users’ PCs:
Computer-maker's WebStorage software tied to malware attack from the BlackTech Group.
Google warns Bluetooth Titan security keys can be hijacked by nearby hackers:
Attackers can connect their own device to Bluetooth-enabled keys used for 2fa.
Ajit Pai’s robocall plan lets carriers charge for new call-blocking tools:
Pai urges carriers to block robocalls by default, but FCC isn't requiring it.
The radio navigation planes use to land safely is insecure and can be hacked:
Radios that sell for $600 can spoof signals planes use to find runways.
Microsoft warns wormable Windows bug could lead to another WannaCry:
Company takes the unusual step of patching Win 2003 and XP. 7, Server 2008 and 2008 R2 also vulnerable.
5G likely to mess with weather forecasts, but FCC auctions spectrum anyway:
FCC auctions 24GHz spectrum despite likely interference with weather satellites.
Fourth-largest coal producer in the US files for bankruptcy:
The company staved off bankruptcy for years but continued to face lean markets.
Disney takes full control of Hulu as Comcast steps aside:
But Disney's minimum $27.5 billion payment to Comcast will happen later.
WhatsApp vulnerability exploited to infect phones with Israeli spyware:
Attacks used app's call function. Targets didn't have to answer to be infected.
Bluetooth harvester signals hacking group’s growing interest in mobile:
ScarCruft's new interest in mobile devices suggests the group's continuing evolution.
Amazon to employees: Quit your job, we’ll help you start a delivery business:
Another effort to reduce shipping times, especially for Prime subscribers.
Ubuntu 19.04: The Disco Dingo arrives and will really make your IT dept. happy:
Even for non-enterprise users, 19.04 offers a faster, more polished desktop.
FCC says carriers failed Florida after hurricane—but lets them off the hook:
FCC finds "voluntary" commitment didn't work, proposes new... voluntary commitment.
Feds charge Chinese national in 2015 breach of health insurer Anthem:
Breach using spear phishing and backdoors exposed data for 78.8 million people.

Security Alerts

Microsoft Releases Security Updates to Address Remote Code Execution Vulnerability:
Original release date: May 16, 2019

Microsoft has released security updates to address a remote code execution vulnerability in the following in-support and out-of-support operating systems:
- In-support systems: Windows 7, Windows Server 2008 R2, and Windows Server 2008
- Out-of-support systems: Windows 2003 and Windows XP
A remote attacker could exploit this vulnerability to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Microsoft Security Advisory and Microsoft Customer Guidance for CVE-2019-0708 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.
Cisco Releases Security Updates for Multiple Products:
Original release date: May 15, 2019

Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Cisco Security Advisories page and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.
VMware Releases Security Updates:
Original release date: May 14, 2019

VMware has released security updates to address vulnerabilities in vCenter Server, ESXi, Workstation, and Fusion. An attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review VMware Security Advisories VMSA-2019-0007 and VMSA-2019-0008 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.
Adobe Releases Security Updates:
Original release date: May 14, 2019

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Adobe Security Bulletins APSB19-29, APSB19-26, and APSB19-18 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.
Microsoft Releases May 2019 Security Updates:
Original release date: May 14, 2019 | Last revised: May 15, 2019

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Microsoft’s Security Update Guide and May 2019 Deployment Information and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.
Intel Releases Security Updates, Mitigations for Multiple Products:
Original release date: May 14, 2019 | Last revised: May 15, 2019

Intel has released security updates and recommendations to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to gain an escalation of privileges on a previously infected machine.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Intel Product Security Center Advisories page, apply the necessary mitigations, and refer to vendors for appropriate patches, when available.

This product is provided subject to this Notification and this Privacy & Use policy.
Samba Releases Security Updates:
Original release date: May 14, 2019

The Samba Team has released security updates to address a vulnerability in Samba. An attacker could exploit this vulnerability take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Samba Security Announcement for CVE-2018-16860 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.
Facebook Releases Security Advisory for WhatsApp:
Original release date: May 14, 2019

Facebook has released a security advisory to address a vulnerability in WhatsApp. A remote attacker could exploit this vulnerability to take control of an affected device.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users to review the Facebook Security Advisory for CVE-2019-3568 and upgrade to the appropriate version.

This product is provided subject to this Notification and this Privacy & Use policy.
Apple Releases Multiple Security Updates:
Original release date: May 14, 2019

Apple has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Apple security pages for the following products and apply the necessary updates:
- watchOS 5.2.1
- Safari 12.1.1
- Apple TV Software 7.3
- tvOS 12.3
- iOS 12.3
- macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra
This product is provided subject to this Notification and this Privacy & Use policy.
Cisco Releases Security Updates:
Original release date: May 13, 2019 | Last revised: May 14, 2019

Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the CERT Coordination Center's Vulnerability Note VU#400865 and the following Cisco Security Advisories and apply the necessary updates:
- Cisco IOS XE Software Web UI Command Injection Vulnerability cisco-sa-20190513-webui
- Cisco Secure Boot Hardware Tampering Vulnerability cisco-sa-20190513-secureboot
This product is provided subject to this Notification and this Privacy & Use policy.
:
:
:
:
:
:
:
:
:
:

Good Morning wb_sunny

Request Support live_help

Learn About Us info

Technology News view_quilt

Security Alerts https

Good Morning

Request Support

Learn About Us

Technology News

Security Alerts