Mystery Windows vulnerabilities disclosed by Google after canceled Patch Tuesday

Security Digest Information security news and advice from TechTarget's network | February 22, 2017 FEATURED STORY Google discloses Windows vulnerability after canceled Patch Tuesday by Michael Heller, Senior Reporter Google Project Zero discloses a Windows vulnerability that passed the 90-day deadline and comes soon after Microsoft canceled its Patch Tuesday release. (SearchSecurity.com) Advertisement NEWS   Windows 10 privacy issues persist, says EU privacy watchdog Windows 10 privacy issues remain as EU's top privacy watchdog group, the Article 29 Working Party, issues a second warning letter to Microsoft to simplify, clarify data collection. (SearchSecurity.com)   Connected medical devices spark debate at RSA Conference session An RSA Conference session on a new attack on connected medical devices led to a spirited debate on vulnerability disclosure and manufacturer responsibility. (SearchSecurity.com)   RSA Conference speakers tackle tech immigration reform, travel ban Several speakers made pro-immigration remarks at RSA Conference 2017 and called for tech immigration reform following President Trump's controversial executive order. (SearchSecurity.com)   Microsoft Patch Tuesday February release delayed by a month News roundup: Microsoft Patch Tuesday was canceled in February without a clear reason. Plus, APT28 is linked to new Mac malware; Lazarus targets more banks and more. (SearchSecurity.com)   Experts debate national cybersecurity policy suggestions at RSAC 2017 Experts at RSAC 2017 discussed national cybersecurity policy suggestions for the new presidential administration, including what to do about encryption and the DHS mission. (SearchSecurity.com)   Q&A: Digging into darknet technology with Farsight's Andrew Lewman At RSAC, former Tor Project CEO Andrew Lewman explains the latest research into darknet technology and how that tech continues to evolve as an attack vector. (SearchSecurity.com) EXPERT ADVICE   What global threat intelligence can and can't do for security programs Global threat intelligence is a valuable complement to a company's security program, but it can't replace security measures like training and internally collected data. (SearchSecurity.com)   How to make a cloud risk assessment easier with frameworks, standards A cloud risk assessment can often fall by the wayside in an enterprise, but using a standard or framework can simplify it. Expert Dave Shackleford discusses the options available. (SearchCloudSecurity.com)   Intrusion response plans: Tales from front-line IT support The right intrusion response training can make all the difference in data breach prevention. Expert Joe Granneman provides a real-world example from which enterprises can learn. (SearchSecurity.com)   How can open FTP servers be protected from Miner-C malware? Enterprises with open FTP servers are being targeted by Miner-C malware for crypto coin mining activities. Expert Nick Lewis explains how enterprises can protect their servers. (SearchSecurity.com) About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2016 TechTarget. All rights reserved.