{"id":28281,"date":"2023-05-14T11:40:10","date_gmt":"2023-05-14T18:40:10","guid":{"rendered":"https:\/\/www.podfeet.com\/blog\/?p=28281"},"modified":"2023-05-14T11:40:51","modified_gmt":"2023-05-14T18:40:51","slug":"sb-2023-05-14","status":"publish","type":"post","link":"https:\/\/www.podfeet.com\/blog\/2023\/05\/sb-2023-05-14\/","title":{"rendered":"Security Bits \u2014 14 May 2023"},"content":{"rendered":"<h2>Feedback &amp; Followups<\/h2>\n<aside class=\"small-aside\">Listener and community feedback, developments in recently covered stories, and developments in long-running stories we&#8217;re tracking over time.<\/aside>\n<ul>\n<li><a href=\"https:\/\/appleinsider.com\/articles\/23\/05\/01\/apple-issues-rapid-security-response-update-for-ios-1641-macos-1331\">Apple issues Rapid Security Response update for iOS 16.4.1, macOS 13.3.1 \u2014 appleinsider.com\/\u2026<\/a>\n<ul>\n<li><strong>Related:<\/strong> A nice link to bookmark and send to friends and family who ask for more info: <a href=\"https:\/\/tidbits.com\/2023\/05\/02\/what-are-rapid-security-responses-and-why-are-they-important\/\">What Are Rapid Security Responses and Why Are They Important? \u2014 tidbits.com\/\u2026<\/a><\/li>\n<\/ul>\n<\/li>\n<li>Another example of attackers turning their attention to the Mac \u2013 a Trojan pretending to be a PDF viewer named <em>RustBucket<\/em> by a group code-named <em>BlueNoroff<\/em>. BlueNoroff are tied to the infamous <em>Lazarus Group<\/em> who are almost certainly the North Korean government \u2014 <a href=\"https:\/\/www.intego.com\/mac-security-blog\/rustbucket-apt-group-targets-macs-with-pdf-trojan-malware\/\">www.intego.com\/\u2026<\/a><\/li>\n<li>More evidence has emerged that MSI really have lost critically important private keys, including some corresponding to unchangeable public keys burned into many of their motherboards. This nullifies the protections provided by <em>BIOS Guard<\/em> and <em>Boot Guard<\/em>, meaning malicious firmware can be installed by attackers with physical access to computers with MSI motherboards, and there is nothing that can be done to protect these computers. If you have an MSI motherboard, <strong>only install firmware you downloaded from the MSI website yourself<\/strong> \u2014 <a href=\"https:\/\/nakedsecurity.sophos.com\/2023\/05\/09\/low-level-motherboard-security-keys-leaked-in-msi-breach-claim-researchers\/\">nakedsecurity.sophos.com\/\u2026<\/a><\/li>\n<\/ul>\n<h2>&#x2757; Action Alerts<\/h2>\n<aside class=\"small-aside\">Calls to action, if any stories in this section are relevant to you there is some action you should take.<\/aside>\n<ul>\n<li>It was <em>Patch Tuesday<\/em> this week and the many patches from Microsoft include some for actively exploited zero-days, so patch ASAP \u2014 <a href=\"https:\/\/krebsonsecurity.com\/2023\/05\/microsoft-patch-tuesday-may-2023-edition\/\">krebsonsecurity.com\/\u2026<\/a>\n<ul>\n<li>Thankfully most home users don&#8217;t need to worry about the very messy <em>Secure Boot<\/em> patch (important for high-profile people and corporate IT) \u2014 <a href=\"https:\/\/nakedsecurity.sophos.com\/2023\/05\/10\/bootkit-zero-day-fix-is-this-microsofts-most-cautious-patch-ever\/\">nakedsecurity.sophos.com\/\u2026<\/a><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h2>Notable News<\/h2>\n<ul>\n<li>Dr. Geoffrey Hinton, one of the pioneers of AI research (working on neural nets since the 70s!) has resigned from Google so he can dedicate his time to protecting the world from the dangers AI poses \u2014 <a href=\"https:\/\/appleinsider.com\/articles\/23\/05\/02\/the-godfather-of-ai-quit-google-to-call-for-global-regulations\">appleinsider.com\/\u2026<\/a>\n<ul>\n<li>&#x1f4b5; The pay-walled original NYT article: <a href=\"https:\/\/www.nytimes.com\/2023\/05\/01\/technology\/ai-google-chatbot-engineer-quits-hinton.html\">\u2018The Godfather of A.I.\u2019 Leaves Google and Warns of Danger Ahead \u2014 www.nytimes.com\/\u2026<\/a><\/li>\n<\/ul>\n<\/li>\n<li>&#x1f1fa;&#x1f1f8; The FTC has started a process that could see the terms of the settlement the agency reached with Facebook\/Meta in 2020 altered to prevent the company from releasing new data-based products until it actually complies with the terms of the settlement. Meta have 30 days to formally respond, but their initial PR response has been to attack the US government \u2014 <a href=\"https:\/\/appleinsider.com\/articles\/23\/05\/04\/ftc-wants-facebook-to-stop-rolling-out-new-services-until-it-can-guarantee-user-privacy\">appleinsider.com\/\u2026<\/a><\/li>\n<li><a href=\"https:\/\/nakedsecurity.sophos.com\/2023\/05\/03\/tracked-by-hidden-tags-apple-and-google-unite-to-propose-safety-and-security-standards\/\">Tracked by hidden tags? Apple and Google unite to propose safety and security standards\u2026 \u2014 nakedsecurity.sophos.com\/\u2026<\/a><\/li>\n<li><a href=\"https:\/\/appleinsider.com\/articles\/23\/05\/03\/google-rolls-out-support-for-passkeys-across-its-services\">Google rolls out support for passkeys across its services \u2014 appleinsider.com\/\u2026<\/a><\/li>\n<\/ul>\n<h2>Top Tips<\/h2>\n<aside class=\"small-aside\">Tip, tricks, or advice that is likely to be useful to the NosillaCast audience or the family members and friends whose IT they support.<\/aside>\n<ul>\n<li><a href=\"https:\/\/appleinsider.com\/articles\/23\/05\/12\/why-isp-email-services-are-terrible-and-what-to-use-instead\">Why ISP email services are terrible, and what to use instead \u2014 appleinsider.com\/\u2026<\/a><\/li>\n<\/ul>\n<h2>Interesting Insights<\/h2>\n<aside class=\"small-aside\">High-quality opinion and editorial content recommended by Bart.<\/aside>\n<ul>\n<li>An excellent argument against stressing too much about <em>Juice Jacking<\/em>: <a href=\"https:\/\/arstechnica.com\/information-technology\/2023\/05\/fearmongering-over-public-charging-stations-needs-to-stop-heres-why\/\">Those scary warnings of juice jacking in airports and hotels? They\u2019re mostly nonsense \u2014 arstechnica.com\/\u2026<\/a><\/li>\n<\/ul>\n<h2>Palate Cleansers<\/h2>\n<aside class=\"small-aside\">Anything upbeat and nerdy Bart and\/or Allison think you might enjoy.<\/aside>\n<ul>\n<li>In our <a href=\"https:\/\/podfeet.com\/slack\">Podfeet Slack<\/a> under the #delete-me channel Ian Lessing posted a screenshot from a <em>long<\/em> time ago during an iPhoto library migration. There&#8217;s a tiny progress bar and above it, it says, &#8220;Time remaining: About 2147483647 hours&#8221;.\n<ul>\n<li>While that got a good giggle, it was Allister Jenks&#8217;s response that tickled Allison. <\/li>\n<li>&#8220;That number can also be written as 2^31-1 which means it is the largest positive number in a 32-bit integer. In other words, it was not expecting it to take nearly 245 millennia, but in fact an infinite amount of time. It just couldn\u2019t find the <strike>words<\/strike>numbers.&#8221;<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h2>Legend<\/h2>\n<p>When the textual description of a link is part of the link it is the title of the page being linked to, when the text describing a link is not part of the link it is a description written by <a href=\"https:\/\/bartb.ie\/\">Bart<\/a>.<\/p>\n<table>\n<thead>\n<tr>\n<th align=\"center\">Emoji<\/th>\n<th align=\"left\">Meaning<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td align=\"center\">&#x1f3a7;<\/td>\n<td align=\"left\">A link to <strong>audio content<\/strong>, probably a podcast.<\/td>\n<\/tr>\n<tr>\n<td align=\"center\">&#x2757;<\/td>\n<td align=\"left\">A <strong>call to action<\/strong>.<\/td>\n<\/tr>\n<tr>\n<td align=\"center\"><em>flag<\/em><\/td>\n<td align=\"left\">The story is particularly relevant to people living in a <strong>specific country<\/strong>, or, the organisation the story is about is affiliated with the government of a specific country.<\/td>\n<\/tr>\n<tr>\n<td align=\"center\">&#x1f4ca;<\/td>\n<td align=\"left\">A link to <strong>graphical content<\/strong>, probably a chart, graph, or diagram.<\/td>\n<\/tr>\n<tr>\n<td align=\"center\">&#x1f9ef;<\/td>\n<td align=\"left\">A story that has been <strong>over-hyped<\/strong> in the media, or, <em>&#8220;no need to light your hair on fire&#8221;<\/em> &#x1f642;<\/td>\n<\/tr>\n<tr>\n<td align=\"center\">&#x1f4b5;<\/td>\n<td align=\"left\">A link to an article behind a <strong>paywall<\/strong>.<\/td>\n<\/tr>\n<tr>\n<td align=\"center\">&#x1f4cc;<\/td>\n<td align=\"left\">A <strong>pinned<\/strong> story, i.e. one to keep an eye on that&#8217;s likely to develop into something significant in the future.<\/td>\n<\/tr>\n<tr>\n<td align=\"center\">&#x1f3a9;<\/td>\n<td align=\"left\">A <strong><em>tip of the hat<\/em><\/strong> to thank a member of the community for bringing the story to our attention.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"excerpt":{"rendered":"<p>Feedback &amp; Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we&#8217;re tracking over time. Apple issues Rapid Security Response update for iOS 16.4.1, macOS 13.3.1 \u2014 appleinsider.com\/\u2026 Related: A nice link to bookmark and send to friends and family who ask for more info: What Are Rapid Security [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":19030,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_post_was_ever_published":false},"categories":[147,214],"tags":[5865,4614,5864,5281,5821,50,569],"class_list":["post-28281","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog-posts","category-security-bits","tag-google-passkeys","tag-icloud-keychain","tag-msi","tag-passkeys","tag-rapid-security-response","tag-security","tag-security-bits"],"jetpack_featured_media_url":"https:\/\/www.podfeet.com\/blog\/wp-content\/uploads\/2019\/08\/security_bits_logo_400px_no_alpha.jpg","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.podfeet.com\/blog\/wp-json\/wp\/v2\/posts\/28281","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.podfeet.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.podfeet.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.podfeet.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.podfeet.com\/blog\/wp-json\/wp\/v2\/comments?post=28281"}],"version-history":[{"count":2,"href":"https:\/\/www.podfeet.com\/blog\/wp-json\/wp\/v2\/posts\/28281\/revisions"}],"predecessor-version":[{"id":28283,"href":"https:\/\/www.podfeet.com\/blog\/wp-json\/wp\/v2\/posts\/28281\/revisions\/28283"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.podfeet.com\/blog\/wp-json\/wp\/v2\/media\/19030"}],"wp:attachment":[{"href":"https:\/\/www.podfeet.com\/blog\/wp-json\/wp\/v2\/media?parent=28281"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.podfeet.com\/blog\/wp-json\/wp\/v2\/categories?post=28281"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.podfeet.com\/blog\/wp-json\/wp\/v2\/tags?post=28281"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}