English - French - Italian

companies

Nvidia damaged or dinged ?

Peter • Saturday, January 4, 2025 • 2 mins read (373)

Nvidia again part of the long-running trade tech-war between China and US.

The issue

Last December 9th, China has initiated an antitrust investigation into Nvidia, wellknown leading American chipmaker, over suspected violations of the country's anti-monopoly laws.
This inquiry, announced by China's State Administration for Market Regulation (SAMR), particularly focuses on Nvidia's $6.9 billion acquisition of Mellanox Technologies- Israeli-based networking company.

companies

Qualcomm plan to buy Intel ?

Peter • Monday, September 23, 2024 • 2 mins read (390)

One of the most consequential deals in recent years ?

Qualcomm has recently approached Intel regarding a potential takeover, according to a report from the Wall Street Journal. This move comes amid Intel's ongoing struggles in the semiconductor industry, where it has faced significant challenges, including job cuts and a notable drop in stock prices.
As of now, Intel's shares have fallen by 57% this year, making it the worst performer on the Dow Jones Industrial Average; one of the worst results in five-decade history. And Qualcomm seeks to capitalize on Intel's current struggles.

solutions

{Repeat} : Windows App is your gateway for... Windows App

Peter • Friday, September 20, 2024 • 1 min read (207)

The news

Microsoft has announced the general availability of the Windows App across all major platforms, including Windows, macOS, iOS, iPadOS, and web browsers, with a public preview for Android. This app aim to be a secure gateway to connect users to various Windows environments such as Windows 365, Azure Virtual Desktop, and Remote Desktop Services.

companies

Swiss Post is planning to acquire Open Systems

Peter • Thursday, September 19, 2024 • 1 min read (183)

Today we share something different from brokeneggs. A less usual step than delegating security to a third party only.

Interesting possible acquisition or just an enhanced partnership ?

Swiss Post is enhancing its cybersecurity capabilities by planning to acquire Open Systems AG, a Zurich-based cybersecurity specialist - a leading managed SASE provider, providing a comprehensive and unified solution.

nobudget

Flat or falling budgets in Cybersecurity ?

Peter • Saturday, September 7, 2024 • 1 min read (151)

The point

Chief Information Security Officers (CISOs) are experiencing a slowdown in budget growth, with over a third reporting flat or reduced spending in 2024, according to a survey by IANS Research.
Despite an overall increase in security budgets of 8% this year, this is significantly lower than the growth rates of 16% and 17% seen in 2021 and 2022, respectively.

The survey indicates that staffing levels are also stagnating, with many CISOs not hiring amid a continuing talent shortage in the cybersecurity field.

Microsoft

Dual-Boot Linux broken after Windows security update

Peter • Sunday, August 25, 2024 • 2 mins read (300)

The issue:

A monthly Windows update pushed on August 13 has disrupted dual-boot systems running both Windows and Linux.
The update, released on August 13, aimed to fix a two-year-old vulnerability (!) (CVE-2022-2601) related to the GRUB bootloader but, according to Microsoft, inadvertently caused boot failures for many users:

"the update would apply to "dual-boot systems that boot both Windows and Linux and should not affect these systems."
But in fact... after update several users, reported that they were shown the following (lovely and generic) error: Something has gone seriously wrong: SBAT self-check failed: Security Policy Violation'

Microsoft

MFA mandatory for Azure services, soon

Peter • Friday, August 23, 2024 • 1 min read (205)

The good intention:

Microsoft will implement mandatory multi-factor authentication (MFA) for all Azure services starting October 2024. This move aims - of course - to enhance security by ensuring that users verify their identity through multiple methods before accessing services. The requirement will apply to all Azure users, including those with existing accounts.

Networking

New TLD is now reserved from ICANN for internal networks

Peter • Monday, August 12, 2024 • 1 min read (104)

The point:

The Internet Corporation for Assigned Names and Numbers (ICANN) has officially reserved the top-level domain “.INTERNAL” for private-use applications.

emails

Roundcube mail server fix

Peter • Thursday, August 8, 2024 • 1 min read (101)

The issue:

A critical Cross-Site Scripting (XSS) vulnerability was discovered in Roundcube, an open-source webmail software widely used by government agencies and universities.

This vulnerability allows attackers to execute arbitrary JavaScript in the victim's browser simply by having them view a malicious email.
Attackers can 'easily' exploit these vulnerabilities, since no user interaction beyond opening the attacker's email is needed or just one click is required, making them particularly dangerous.
WHY? vulnerabilities leading to the theft of emails, contacts, and passwords, as well as unauthorized email sending from the victim's account !

Microsoft

Simple CSS can be used to bypass anti-phishing Outlook warning...

Peter • Wednesday, August 7, 2024 • 2 mins read (228)

The issue:

To help user to pay better attention to email from unfamiliar addresses, Microsoft 365 add a warning to the email stating “You don't often get email from xyz@example.com. Learn why this is important”.
The so called "First Contact Safety Tip" (from Exchange Online Protection (EOP) and Microsoft Defender).