Geek-Guy.com

Tag: support

AI, Cybersecurity, Exploits, Global Security News, malware

Instagram Account Hijacks Expose the Security Risks of AI-Powered Support

Attackers exploited Meta’s AI support chatbot to reset Instagram passwords and hijack accounts without accessing victims’ email inboxes. Attackers abused Meta’s AI-powered support chatbot to reset Instagram passwords and hijack accounts without accessing victims’ email inboxes. The issue affected several users, including high-profile accounts, before Instagram fixed the flaw. Security researcher Jane Wong and other…

Read more →

AI, Exploits, Global Security News, malware, Risk Management, Russia

Signal Phishing Campaign Targets Journalists and Activists to Steal Backup Recovery Keys

Attackers are texting Signal users posing as Support, asking for backup recovery keys. Once obtained, they can decrypt the entire message history, not just future chats. A phishing campaign is currently targeting Signal users with text messages that impersonate Signal Support and ask them to hand over their backup recovery key. The message looks urgent,…

Read more →

Data Breaches, Global Security News

Humanix expands detection to identify live violations of security procedures

Humanix has announced a capability to identify live violations of organization-defined procedures governing IT support workflows. Designed to prevent unauthorized access, these procedures typically require help desk and service desk agents to follow identity verification steps before fulfilling sensitive requests, such as credential resets. Attackers have learned that pressuring agents to bypass these safeguards is…

Read more →

AI, Cybersecurity, Global Security News, malware, Network Security, Risk Management

Employees are unknowingly inviting tech support impersonators into firms, says FBI

Online or telephone IT support scams have been tricking employees into downloading or clicking on malware for years. But according to the FBI, one group that targets US-based law firms has recently found success in person, by convincing firms to allow a supposed IT support person into the building, where they insert a storage device…

Read more →

Global Security News, AI, Risk Management, Apps

ScalePad CEO Chris Day on MSP & SMB AI Adoption in 2026

ScalePad CEO Chris Day says MSPs are facing mounting pressure to support artificial intelligence as SMB clients adopt AI tools faster than many providers can operationalize, creating new urgency around automation, advisory services, and AI governance. Clients are moving faster than providers MSPs are being pulled into artificial intelligence faster than many expected, as small…

Read more →

AI, APAC, Apps, Global Security News

AI Demand Pushes Neoclouds into the Channel Conversation

Neocloud providers are gaining momentum as enterprises look for more GPU capacity to support AI training, fine-tuning, and inference. For MSPs, resellers, and system integrators, that shift could expand the cloud infrastructure conversation beyond hypescalers. As AI workloads push customers to compare every available option, partners have an opportunity to advise on cost, capacity, workload…

Read more →

AI, Apps, Compliance, Data Breaches, Exploits, Global Security News, Risk Management

SharePoint On-Prem End of Life: 2026 Migration Guide

With Microsoft ending support for SharePoint Server 2016 and 2019 on July 14, 2026, organizations still running on-premises SharePoint face a shrinking window to modernize aging collaboration environments before security updates, bug fixes, and vendor support disappear. SharePoint 2019 On-Prem lives on, but without Microsoft support For over a decade, local SharePoint deployments have served…

Read more →

Global Security News

Riverbed introduces new Aternity tools for autonomous IT operations

Riverbed has announced new capabilities for Aternity designed to support autonomous IT operations for digital experience management. The updates help digital workplace teams move toward prevention-focused operations through broader visibility, context-aware intelligence, and governance controls that support automated workflows. Organizations are measured by their ability to deliver frictionless digital experiences that keep employees productive and…

Read more →

AI, Global Security News

Keycard helps developers secure autonomous AI agents with scoped access

Keycard has announced Keycard for Multi-Agent Apps, extending its platform to support delegated, session-based access across systems of autonomous agents. Keycard lets developers build apps where every agent has its own identity, access is scoped to each task and every action is fully attributable across agents, users and systems. “Enterprises are rebuilding business functions around…

Read more →

AI, Apps, Global Security News

Multi-model AI is creating a routing headache for enterprises

Application teams are moving AI inference into production systems that support business operations. Enterprises are expanding traffic management, identity controls, observability, and routing systems for multiple AI models and environments. F5’s 2026 State of Application Strategy Report found that 78% of organizations operate their own inference services and 77% identify inference as their primary AI…

Read more →

AI, Data Breaches, Global Security News, malware

DigiCert breached via malicious screensaver file

A targeted social engineering attack against DigiCert’s support channel led to the compromise of internal systems and the unauthorized issuance of EV Code Signing certificates. DigiCert is a global Certificate Authority (CA) providing digital trust services, specializing in TLS/SSL certificates, PKI management, and IoT security. According to DigiCert’s incident report, a threat actor contacted the…

Read more →

AI, Apps, Global Security News

OpenSSL 4.0.0 release cuts deprecated protocols and gains post-quantum support

OpenSSL 4.0.0 removes several long-deprecated features, adds support for Encrypted Client Hello, and introduces API-level changes that will require code updates for applications built against older versions. SSLv3, SSLv2 client hello, and engines are gone SSLv3 support has been removed. The protocol was deprecated in 2015, and OpenSSL had it disabled by default since version…

Read more →

AI, Global Security News

Reddit declares war on bad bot activity

Reddit is introducing changes to support interactions between people. The company is taking a bottom-up approach to help users understand when they are engaging with another person unless an account is labeled otherwise. Reddit plans to verify that users are human without requiring disclosure of real-world identity. How does it work Verified profiles for brands,…

Read more →

AI, Global Security News

Backslash adds cross-product support to secure AI skills in developer environments

Backslash Security has revealed new cross-product support for agentic AI Skills within its platform, enabling organizations to discover, assess, and apply security guardrails to Skills used across AI-native software development environments. The developer ecosystem of AI-powered coding agents and tools is rapidly expanding with new extensibility layers, including Skills, Model Context Protocol (MCP) servers, prompt…

Read more →

Global Security News

Druva connects identity data and behavior to restore access after attacks

Druva has revealed Druva Identity Resilience, adding support for Okta and Microsoft Active Directory alongside Microsoft Entra ID. Druva Identity Resilience delivers unified protection, cyber recovery, and threat detection and response in a single SaaS platform, bringing disparate identity providers together so security and IT teams can restore trusted access through one coordinated process. Identity-driven…

Read more →

AI, china, Data Breaches, Exploits, Global Security News, Government & Policy, Politics, privacy, Russia

Congress Is Considering Abolishing Your Right to Be Anonymous Online

Sen. Marsha Blackburn, R-Tenn., speaks at a rally in support of the Kids Online Safety Act on Dec. 10, 2024, in Washington, D.C. Photo: Jemal Countess/Getty Images for Accountable Tech In August 2024, the Biden administration hosted hundreds of influencers at the White House for the first-ever Creator Economy Conference. Neera Tanden, a senior Biden adviser,…

Read more →

Global Security News

CloudCasa expands Red Hat OpenShift data protection across edge and hybrid cloud

CloudCasa has announced enhancements to its backup and recovery platform designed to support Red Hat OpenShift environments across core, edge, and hybrid cloud deployments. The latest CloudCasa updates introduce SMB protocol support as a backup storage target, enabling organizations to leverage existing SMB-based storage, including deployments using an SMB operator on Red Hat OpenShift clusters,…

Read more →

AI, APAC, Global Security News

Snowflake Cortex Code Expands Towards Supporting Any Data, Anywhere

COMPANY NEWS:  Cortex Code CLI extends beyond Snowflake workflows to support popular data systems starting with dbt and Apache Airflow®, delivering AI assistance across environments, regardless of where that data lives Developers can apply Snowflake’s secure, context-aware AI coding agent directly within their environments to build and optimise data pipelines more efficiently Cortex Code CLI…

Read more →

AI, Compliance, Global Security News

Compliance Scorecard v10 delivers context-driven AI for explainable compliance decisions

Compliance Scorecard announced the release of v10, introducing governed, audit-ready AI designed to support defensible compliance decision-making for managed service providers (MSPs). Compliance Scorecard v10 applies AI only within a structured system of validated context and controls. The platform is built on a simple premise: AI can only be trusted in compliance if the required…

Read more →

AI, Cybersecurity, Global Security News

Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies

Cybersecurity researchers have disclosed that artificial intelligence (AI) assistants that support web browsing or URL fetching capabilities can be turned into stealthy command-and-control (C2) relays, a technique that could allow attackers to blend into legitimate enterprise communications and evade detection. The attack method, which has been demonstrated against Microsoft Copilot and xAI Grok

Read more →

AI, Compliance, Europe, Global Security News, Risk Management

Cynomi Expands EU NIS 2, AI Governance for MSPs

Cynomi is expanding its regulatory governance capabilities across the UK and European Union, adding new NIS 2 support for Croatia and Belgium while positioning its platform to help MSPs scale fractional CISO and AI governance services amid tightening compliance mandates. Regulatory pressure drives demand for fractional CISO services As regulatory pressure intensifies across critical infrastructure…

Read more →

AI, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

BeyondTrust RCE Exploited for Domain Control

Attackers are actively exploiting a vulnerability in BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) to remotely run commands and escalate to full domain control in some environments.  The flaw affects self-hosted deployments and can be triggered without authentication. We “… observed attempts to deploy the SimpleHelp RMM tool for persistence, along with discovery…

Read more →

Global Security News

Vim 9.2 adds scripting updates, diff improvements, and experimental Wayland support

Vim 9.2 adds a range of incremental changes focused on scripting, usability, and cross-platform support. The update includes improvements to completion behavior, expanded Vim9 language features, and new options for diff mode. Completion updates in insert mode Vim 9.2 includes expanded completion behavior, including fuzzy matching support during insert-mode completion. Users can also complete words…

Read more →

AI, china, Cybersecurity, Data Breaches, Exploits, Global Security News, Government & Policy, malware, Risk Management, Russia

Google: state-backed hackers exploit Gemini AI for cyber recon and attacks

Google says nation-state actors used Gemini AI for reconnaissance and attack support in cyber operations. Google DeepMind and GTIG report a rise in model extraction or “distillation” attacks aimed at stealing AI intellectual property, which Google has detected and blocked. While APT groups have not breached frontier models, private firms and researchers have tried to…

Read more →

AI, GitHub, Global Security News, News, open source, OpenVPN, Software

OpenVPN releases version 2.7.0 with expanded protocol and platform updates

OpenVPN version 2.7.0 is now available. The update advances support for multi-address server configurations and updates client functionality across operating systems. The release includes enhancements in data channel handling and support for evolving kernel and cryptographic components. Server enhancements Version 2.7.0 adds multi-socket support for server instances. This allows servers to manage multiple addresses, ports,…

Read more →

AI, Cybersecurity, Global Security News, Resources

How Digital Training Programs Support Skills in Healthcare Settings

In this post, I will show you how digital training programs support skills in healthcare settings. Healthcare workers should keep updating their information to provide safe and effective care. In such environments, digital training programs have emerged as a critical component of the skill development strategy. Frequent learning opportunities allow staff to build familiarity and…

Read more →

AI, china, Data Breaches, Exploits, Global Security News, Network Security, Remote Access Security, Security, Vulnerabilities

BeyondTrust fixes critical RCE flaw in remote access tools

Companies using self-hosted versions of BeyondTrust Remote Support (RS) or Privileged Remote Access (PRA) should deploy patches for a critical vulnerability that allows attacks to execute OS commands without authentication. “Successful exploitation requires no authentication or user interaction and may lead to system compromise, including unauthorized access, data exfiltration, and service disruption,” BeyondTrust said in…

Read more →

AI, Breaking News, Exploits, Global Security News, Government & Policy, hacking, hacking news, Security

BeyondTrust fixes critical pre-auth bug allowing remote code execution

BeyondTrust patched a critical pre-auth flaw in Remote Support and PRA that could let attackers execute code remotely. BeyondTrust released security updates to address a critical flaw, tracked as CVE-2026-1731 (CVSS score of 9.9), in its Remote Support and older Privileged Remote Access products. The bug could allow an unauthenticated attacker to send specially crafted…

Read more →

AI, Breaking News, Exploits, Global Security News, Government & Policy, hacking, hacking news, Security

BeyondTrust fixes critical pre-auth bug allowing remote code execution

BeyondTrust patched a critical pre-auth flaw in Remote Support and PRA that could let attackers execute code remotely. BeyondTrust released security updates to address a critical flaw, tracked as CVE-2026-1731 (CVSS score of 9.9), in its Remote Support and older Privileged Remote Access products. The bug could allow an unauthenticated attacker to send specially crafted…

Read more →

AI, Breaking News, Exploits, Global Security News, Government & Policy, hacking, hacking news, Security

BeyondTrust fixes critical pre-auth bug allowing remote code execution

BeyondTrust patched a critical pre-auth flaw in Remote Support and PRA that could let attackers execute code remotely. BeyondTrust released security updates to address a critical flaw, tracked as CVE-2026-1731 (CVSS score of 9.9), in its Remote Support and older Privileged Remote Access products. The bug could allow an unauthenticated attacker to send specially crafted…

Read more →

AI, Breaking News, Exploits, Global Security News, Government & Policy, hacking, hacking news, Security

BeyondTrust fixes critical pre-auth bug allowing remote code execution

BeyondTrust patched a critical pre-auth flaw in Remote Support and PRA that could let attackers execute code remotely. BeyondTrust released security updates to address a critical flaw, tracked as CVE-2026-1731 (CVSS score of 9.9), in its Remote Support and older Privileged Remote Access products. The bug could allow an unauthenticated attacker to send specially crafted…

Read more →

china, Data Breaches, Don't miss, Enterprise, Exploits, Global Security News, Hot stuff, News

BeyondTrust fixes easy-to-exploit pre-auth RCE vulnerability in remote access tools (CVE-2026-1731)

BeyondTrust fixed a critical remote code execution vulnerability (CVE-2026-1731) in its Remote Support (RS) and Privileged Remote Access (PRA) solutions and is urging self-hosted customers to apply the patch as soon a possible. Unlike the Remote Support zero-day (CVE-2024-12356) that was flagged after having been exploited by China-nexus threat actors to breach the US Treasury…

Read more →

china, Data Breaches, Don't miss, Enterprise, Exploits, Global Security News, Hot stuff, News

BeyondTrust fixes easy-to-exploit pre-auth RCE vulnerability in remote access tools (CVE-2026-1731)

BeyondTrust fixed a critical remote code execution vulnerability (CVE-2026-1731) in its Remote Support (RS) and Privileged Remote Access (PRA) solutions and is urging self-hosted customers to apply the patch as soon a possible. Unlike the Remote Support zero-day (CVE-2024-12356) that was flagged after having been exploited by China-nexus threat actors to breach the US Treasury…

Read more →

AI, Exploits, Global Security News

BeyondTrust Fixes Critical Pre-Auth RCE Vulnerability in Remote Support and PRA

BeyondTrust has released updates to address a critical security flaw impacting Remote Support (RS) and Privileged Remote Access (PRA) products that, if successfully exploited, could result in remote code execution. “BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain a critical pre-authentication remote code execution vulnerability,” the company

Read more →