February 2020
Download

Microsoft Windows 7 and Server 2008 will no longer receive security patches as mentioned last month.  Be sure to upgrade.

New laws regarding 911 access on phone systems

There are 2 new laws going into effect on February 16, 2020 that require that business phone systems work in specific ways when dialing 911.  If you are considering a new phone system, make sure the vendor can comply with these requirements.

Locations with Multiline systems (MLTS) must remove any requirement that a caller dial “9”, “8”, or any other number to reach an outside line to make a call to 911.

When a 911 call is placed from an MLTS, a notification must be sent to on-site personnel, alerting them to the emergency.

Organizations with MLTS must provide dispatchable location, i.e., street address, floor, room and/or suite number (if applicable) to public safety with 911 calls – not just the address.

OneDrive makes it easy to share files with users outside your company

“Request Files” has rolled out to Office 365 tenants and makes gathering files from others very easy. OneDrive file Sharing Basics.

 TeamViewer 12.0 trial morphs into a subscription and then they debt collect you without warning.  To cancel the trial or subscription you must create a support ticket.

 LastPass is discontinuing its native Mac app and replacing it with a more universal web app.

LogMeIn, the parent company of LastPass, announced in 2019 that it will be acquired by a private equity firm.

 Outlook.com Premium Portal will be shutdown Feb. 2020

This will not affect paid users, just those who got free accounts with custom domains.

Having an online store can potentially trigger tax obligations in 43 states.

 The new Chromium-based Microsoft Edge

The new Edge browser will use the same underlying technology as the Chrome browser.  It will be installed along with Windows updates over the next few months, or you can download it now.

It will be possible to install Chrome extensions in Microsoft’s new web browser as well as extensions made for Edge exclusively.

Beginning with Version 2002 of Office 365 ProPlus, Microsoft will install a browser extension that makes Bing the default search engine for Google Chrome. Microsoft 365 Roadmap ID 59917.  Admins can stop the ’Microsoft Search in Bing quick access’ extension from being installed. The various methods are documented here.

Google will limit Cross-Site Tracking in Chrome by default starting in February

This could break some existing websites. If you have trouble accessing a website using Chrome, try another browser. Starting Feb. 4 (release of Chrome 80), Google Chrome will change how they handle cookies.  …companies and publishers will be forced to move to HTTPS. If they don’t, their cookies will be discarded by the browser.

Apple releases iOS 13.3.1 update for iPhone

 Feb. 12th is National Clean Out Your Computer Day

Get on-screen icons for Caps Lock, Num Lock and Scroll Lock with addLEDs.

Chinese court rules AI-written article is protected by copyright

 A drug designed entirely by artificial intelligence is about to enter clinical human trials for the first time.

Hulu is now part of Disney’s streaming triumvirate with ESPN+ and Disney+

12 Books To Grow Your Mindset And Change Your Life

Devin Nunes’ cow – What not to do to avoid negative publicity. Followers went from about 1000 to 700,000 after fighting it in court.

Rep. Devin Nunes Sues Internet Cow For Saying Mean Things About Him Online.

The funniest things to ask Alexa

SECURITY

World Economic Forum report once again lists cyberattacks as one of the top threats facing the world in 2020 – alongside climate change, extreme weather and natural disasters.

Details: http://reports.weforum.org/global-risks-report-2020/executive-summary/

 Phishing is now the No. 1 attack of choice for cybercriminals.

“…the sneakiest phishes are highly socially engineered and customized for a specific intended recipient.” They can reference other staff, and appear to come from your boss or co-worker.

Multiple cable modems used by ISPs to provide broadband into homes have a critical vulnerability that would allow an attacker full remote control of the device. The affected devices numbers in the hundreds of millions worldwide. The bug (CVE-2019-19494) is found in cable modems from Arris, COMPAL, Netgear, Sagemcom, Technicolor and others.  Contact your ISP for a software fix.

  US government website hacked with pro-Iranian messages

Wawa stores card breach: 30 million customers’ details for sale online

Hacker leaks passwords for 500,000+ servers, routers, and IoT devices

The list includes each device’s IP address, along with a username and password for the Telnet service (remote access).

Data Breach Exposes Personal Details of Over 30,000 U.S. Cannabis Users

250 Million Microsoft Customer Support Records Exposed Online

SocialCaptain inadvertently exposed the login information of roughly 10,000 Instagram accounts.

If you’ve never used Social Captain, your Instagram password is safe.

Amazon, Ring Sued Over Weak Camera Security

Ring releases “control center” to battle claims of verifiably “awful” security practices.

Ring allows police access to users’ videos without a subpoena or a warrant.

Ring Doorbell app shares user data with third parties

The app for Amazon’s Ring Camera (Ring Doorbell) shares user data, which makes the owners identifiable with third party companies such as Facebook. Data shared included names, private IP addresses, mobile network operators, persistent identifiers and sensor data on the devices of paying Amazon customers.

The United Nations was the victim of a massive, likely state-sponsored hacker attack this past summer, according to reports from The New Humanitarian and Associated Press. The UN didn’t disclose the details until forced to by publicity.

By Tim Torian

Newsletter Sign-Up

The Torian Group Times Newsletter is a service to our clients, and anyone who finds it useful. Topics include security updates; known problems with recent patches; new and upcoming software and hardware that might affect your business; and information about technology in the Visalia area.  It is free to anyone who wishes to subscribe by providing their name and email address. We will not do anything with this information other than sending the newsletter – no unsolicited marketing of any kind.

Subscribe to our Newsletters

 

Unsubscribe from Newsletters