Archive for May 4, 2021

Dell Just Patched A 12 Year Old Vulnerability That Exposed Hundreds Of Millions Of Dells To Being Pwned

Posted in Commentary with tags on May 4, 2021 by itnerd

If you own a Dell PC, you need to pay attention to this. Hundreds of millions of Dell desktops, laptops, notebooks, and tablets will need to update their Dell DBUtil driver to fix a 12-year-old vulnerability that exposes systems to attacks:

The bug, tracked as CVE-2021-21551, impacts version 2.3 of DBUtil, a Dell BIOS driver that allows the OS and system apps to interact with the computer’s BIOS and hardware. In a report published today and shared with The Record, security firm SentinelOne said it found a vulnerability in this driver that could be abused to allow threat actors access driver functions and execute malicious code with SYSTEM and kernel-level privileges. Researchers said the DBUtil vulnerability cannot be exploited over the internet to gain access to unpatched systems remotely. Instead, threat actors who gained initial access to a computer, even to a low-level account, could abuse this bug to take full control over the compromised PC — in what the security community typically describes as a privilege escalation vulnerability.

This is a big deal that affects home and business users. Dell has a document that you should read here which speaks to this issue and how to address it. Thus I would strongly suggest any Dell user take heed of this and act accordingly.

New LinkedIn Data Reveals What Canadians Value In A New Job

Posted in Commentary with tags on May 4, 2021 by itnerd

After a year of unprecedented conditions, a number of Canada’s Top Companies are shaking up how they structure their worksites and workdays, with many planning to offer more flexible and hybrid remote/in-person roles even after the pandemic is over.

So, are they giving people what they want? In the latest edition of the Workforce Confidence Index, LinkedIn looked at what Canadians say they value most in a new job – and how that varies across industries.

  • Nearly half of respondents from Canada’s workforce said that having flexibility over their working hours and location and finding work/life balance had become more important value propositions in a new job after the pandemic than beforehand.
  • 40% of respondents say benefits – such as health care and paid time off – were also more important than they were pre-pandemic, while just over a third said the same was true of salary and workplace culture.
  • Roughly a quarter of respondents overall said a company’s visible commitment to diversity and inclusion was more important to them than it was before the pandemic, while 35% had a heightened focus on building transferable skills.

For the full results, visit here.

Methodology

LinkedIn’s Workforce Confidence Index is based on a quantitative online survey that is distributed to Canada-based members via email every two weeks. Members are randomly sampled and must be opted into research to participate. Students, stay-at-home partners & retirees are excluded from analysis so we’re able to get an accurate representation of those currently active in the workforce. We analyze data in aggregate and will always respect member privacy.

Data is weighted by engagement level, to ensure fair representation of various activity levels on the platform. The results represent the world as seen through the lens of LinkedIn’s membership; variances between LinkedIn’s membership & overall market population are not accounted for. 1725 workers in Canada were surveyed from March 13-April 9 for the research on what the workforce values in a new role.

The LinkedIn Omnibus Research on how jobs have changed is from March 2021, with n>50.

Guest Post: Kansas & Rhode Island Suffered The Most Identity Thefts In 2020 Says Atlas VPN

Posted in Commentary with tags on May 4, 2021 by itnerd

Fraudsters did not hesitate to use the pandemic panic to claim unemployment insurance instead of the ones that needed it the most, and some states were not prepared at all.

According to the data presented by the Atlas VPN team, Kansas and Rhode Island states experienced the most identity thefts in 2020. The majority of the thefts were being used to apply or receive government benefits such as stimulus checks or unemployment compensation.

The most targeted State by scammers in the US was Kansas, as there were 1,485 identity theft reports per 100,000 population. The second most identity thefts were reported in Rhode Island, with a total of 1,191 cases. Illinois ranks third with 1,073 impersonation reports.

According to cybersecurity writer and researcher at Atlas VPN Anton Petrov: 

“As long as such security loopholes that enable criminals to benefit from stolen identities exist, consumers should take extra care and educate themselves on the risks. Reviewing your bank and credit card statements regularly or even freezing your credit can help lower the damages in case your identity gets stolen by criminals.”

Identity theft types

There are plenty of different types of fraudulent crimes that scammers did with stolen identities in the US. 

By no surprise, government benefits, including unemployment compensation and stimulus check frauds, made up 32% of all reports. Such scams happen when criminals use stolen identities to collect benefits across multiple states fraudulently. 

The second most reported identity thefts were credit card fraud — new accounts with 30% of all reports.

Miscellaneous identity theft was the third most reported type. It constituted 23% of all identity theft reports in 2020. This category includes online shopping, payment account fraud, email, and social media fraud, medical services, insurance, securities account fraud, and other types of identity theft.

Next up, we have business or personal loan fraud that made up 8% of all identity thefts in 2020. The least — 7% of identity thefts were tax fraud.

To read the full article, head over to: https://atlasvpn.com/blog/kansas-and-rhode-island-suffered-the-most-identity-thefts-in-2020