Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win







Security is the protection of information systems from theft or damage to the hardware, the software, and to the information on them, as well as from disruption or misdirection of the services they provide. Computer systems now include a very wide variety of "smart" devices, including smartphones, televisions and tiny devices as part of the Internet of Things -– and networks include not only the Internet and private data networks, but also Bluetooth, Wi-Fi and other wireless networks.

Share tech news, updates, or what's on your mind.

Sign up to Post

My email was hacked into about a week ago and ever since then any new email goes directly into the trash. I've changed my password to a more complexed one. Everything has been fine ever since other than the emails going directly into the trash.

 I use Microsoft Outlook 2016 program and we currently use Microsoft 365 exchange as our email provider.
Industry Leaders: We Want Your Opinion!
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

One of the datacenters a company uses is a converted nuclear shelter.
Switzerland, paranoid about security, has enough nuclear shelters to protect all of its inhabitants. Imagine if we converted all of these nuclear shelters to power racks and racks of standard 1U servers instead. How many servers can we support? Make your best guess and round your answer to the nearest million.
I am writing this from my son's computer, as I have lost my wi-fi connection at my house. How do I get it back?
I have looked at the modem and router. They still have the right number of icons lit on their dials. I phoned Netgear and got an answering machine, and was unable to get the help I need.

I am wondering if this info can help you diagnose for me: Recently there has been a third sentence in the window drop-down [when I clicked on the wi-fi icon.] It said something about recommendations. Shortly after this I lost wi-fi to my computer.

Also and perhaps . . . Do I have a security problem?
In System Preferences > Wi-fi . . .  I see most networks have Security labeled WPA/WPA2 Personal. I have just WEP.
I have PowerShell code for setting up WMI on a workstation.
It lacks the necessary setting for DCOM.
Manually, we would do this:
      Computers / My Computer / Properties / COM Security
      Launch and Activate Permissions … add “name” with full privileges

How can I get this into the PowerShell code?

(I already have code to switch DCOM from Connect to None and from None to Connect which involve registry edits done in the code - for an altogether different purpose.  But this looks a bit different).
Dear experts,

I would like to set access control (IP address) by /etc/hosts.allow and /etc/hosts.deny in Ubuntu. I like to deny all IP address to use ssh except some IP address.

(1) could you please teach me how to do this by editing  /etc/hosts.allow and /etc/hosts.deny. I am kind of confused about the order of use this 2 files. could you please give me examples? If add allow entries in /etc/hosts.allow , does rest of others is denied?

(2) Can /etc/hosts.allow and /etc/hosts.deny also control the access of Xrdp (port 3389)? if yes, how to do it?

Thank you so much!
Recently I have created new DFS Namspace (in preparation to move users redirected folders to different server share)

Until now users folders were redirected to


After implementing DFS Namespace users folders are still pointing to the same place but it is now showing as


The issue is that when users click on to files  located in the new DFS namspace they get this message every time they try to open file:

Open File - Security Warning
We can't verify who created this file. Are you sure you want to open this file:


This file is in a location outside your local network. Files from locations you don't recognize can harm your PC. Only open this file if you trust the location.

How do I fix this annoyance?
Can you please tell me how to i clear this message? I am using windows 7 32 bit and my computer is Dell Latitude D620. It installed with Norton Antivirus

A problem has occured in BitDefender. Threat Scanner. A file containing error information has been created at C:\Windows\Temp\BitDefender Threat Scanner.dmpl. You are strongly encouraged to send the file
Hi experts.  I have a Server 2008 AD and a Server 2008 r2 member server running IE 11.    I'm trying to use a gpo to force IE 11 on the member server to use the "medium" security setting in the Internet Zone and on the Privacy tab.   I'm not having any luck.  I assume this may be an issue with IE 11 running in an older domain?    If you have a quick answer I would really appreciate it.
If I open  the Microsoft access Security warning box , that is after installation and rebooting the compute ,it still want the internet connection, if I close the message box about the internet, the application still open but will keep on coming each time the application is opened. Should I go ahead to get to internet connection again and what happens after that?


What is a good file and or drive encryption program ( on an external drive for mobile transport) that I can use on a windows 2008 server.
Is there a good free program? ( I prefer not to use Bit Locker)
Ready for your healthcare security check-up?
Ready for your healthcare security check-up?

In the past few years, healthcare organizations have become a prime target for advanced attacks. Does your organization have what it needs to defend itself? Schedule your healthcare security check-up today and download our free Healthcare Security Resource Kit today!

Sometimes legitimate websites such as for hotels or companies get flagged by my Malwarebytes Pro as scam websites (the websites get blocked):

"Malwarebytes blocked a suspected bad URL or an unwanted program."

In these cases, as I need to visit for example a hotel's website to make a booking, would it be safe to use a Chromebook instead? Or use another solution to visit this website?
I have created an Amazon S3-compatible server that is being used purely for backing up my data (using ARQ, etc.)   However, I am only able to connect to it using HTTP as a URL not HTTPS.   If I use HTTP (not HTTPS) as my URL, are my S3 credentials and data transmitted in plain text, or is encrypted?  

I have a IdHTTPServer and i want implement the support for handle both http and https request. There are my consig

FSSLHandler := TIdServerIOHandlerSSLOpenSSL.Create(nil);
FSSLHandler.SSLOptions.CertFile     := 'certificate.pem';
FSSLHandler.SSLOptions.KeyFile      := 'key.pem';
FSSLHandler.SSLOptions.RootCertFile := 'chain.pem';

FIdHTTPServer.Bindings.Add.Port := 443;
FIdHTTPServer.IOHandler := FSSLHandler;

FIdHTTPServer.Activate := true;

Open in new window

in the server directory i have ssleay32.dll and ssleay32.dll v1.0.2l (Win32) downloaded from http://indy.fulgan.com/SSL/

when i make a request from Chrome, in the security tab of the developer tool i see:

Also, analyzing the server with sslyze i have some others security issue (see VULNERABLE label):

> sslyze --regular local.XXXXXXXXXXXXXX.com:4343


 * SSLV2 Cipher Suites:
      Server rejected all cipher suites.

 * TLSV1_1 Cipher Suites:
        None - Server followed client cipher suite preference.                                                            
        TLS_RSA_WITH_AES_256_CBC_SHA                      -              256 bits                                                                  
        TLS_RSA_WITH_CAMELLIA_256_CBC_SHA                 -              256 bits                                    
Is something wrong with the Domain or the setup? I’m setting up security groups for the GPs and they’ll only work if I include “Domain Computers”. These are User Policies. Please see picture.

I encrypted a USB drive using BitLocker To Go in Windows 10 Pro and when I inserted it into a new machine it prompted for the password. Once I entered it in I noticed a More Options section which allowed me to check Automatically unlock on this PC. I have since realized I don't want this to occur but I don't know how to make it go back to the way it was. I looked in Credential Manager with no luck. Sorry I'm new to BitLocker.
Good morning.

We have an urgent issue that has taken large pieces of our operation out of action. Everything was working fine yesterday, but last night there was an upgrade from Office365 ProPlus installed out our machine. This upgrade took Outlook 2016 to version 16.0.8202.2193

Since the upgrade all of our custom elements in Outlook have stopped working meaning that flow of data has just ceased in certain areas.

We have traced the issue to the fact that Outlook is now blocking the macros and they are not running (it does not accept the prior valid Digital Signing). If we change into "Danger Danger" mode (enable all macros), all the code runs fine, so the issue is not with our code but with Outlook blocking our code. If we set our security back to the preferred "Notifications for digitally signed macros, all other macros disabled", the code does not work - it does absolutely nothing.

Our code is all signed with a certificate generated via the SELFCERT.EXE provided as part of Office, located at "C:\Program Files (x86)\Microsoft Office\root\Office16\SELFCERT.EXE", and this has all been working fine up until this upgrade.

I have tried removing and completely rebuilding the VBA project in Outlook, and have tried generating a new Self-Cert certificate (which does generate okay), but when trying to Digitally Sign within the VBA project and saving, Outlook does not accept any certificate - either the new one or the old one. It simply displays the message:

There …
MS changed windows update scheme so that they get rid of multiple small patches and pack them to monthly accumulated updates.
And the monthly update is now not separating security and non security update. Only single monthly rollup upate and I can download from https://support.microsoft.com/en-us/help/4013429/windows-10-update-kb4013429 and the monthly update size is about more than 1 GB.

This is what I understand so far.

Now in enterprise environment, how do we manage updates? Do we push out monthly update or let Windows to download small updates? When I check my windows 10 computer 1607, it was downloading all small updates. So I'm not sure if I have to push out the 1Gb worth of update every month or configure to download whatever available updates being pushed from MS Update.

Second question is, does MS regular windows update push out the monthly accumulated update?

third question is specific to GPO.
When I look at Windows Update GPO item, there are two items regarding feature updates and quality updates. In my knowledge, the quality update includes all security updates and Windows system related updates such as .NET and others. Feature update is just.. I don't know some feature improvements. Anyway, as I read, the 'Quality Updates' in this GPO items refers to Monthly Quality update which is worth of more than 1 GB in size. Am I right? If then, we don't control how small updates are being downloaded and installed on clients?
I know there are several programms to pinpoint the exact location of a mobile phone. In my case I just want to find out in which country a specific phone is. Is there a way to do that?
I am trying to install an Acronis cloud agent on a Windows 2016 server but every time I install it, the services for Acronis do not install.  The application completes and is functioning but when I try and run a backup it will freeze.

I found an error in the Event Viewer, 10016, from DistributedCOM that references the AD account I am using for the services.  I found an article that walked me through changing the owner of a couple of registry keys and assigning permissions but after a reboot i am still getting the same error.

Any help would be appreciated.  Below is the exact error.

The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
 and APPID
 to the user domain\user SID (S-1-5-21-1275210071-861567501-682003330-6644) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Looking for the Wi-Fi vendor that's right for you?
Looking for the Wi-Fi vendor that's right for you?

We know how difficult it can be to evaluate Wi-Fi vendors, so we created this helpful Wi-Fi Buyer's Guide to help you find the Wi-Fi vendor that's right for your business! Download the guide and get started on our checklist today!

We have a GPO that is linked to a OU container that is 3 branches down from the root.  The contents of the OU are 3 terminal servers.  The GPO has 1 computer configuration setting and 2 user configuration settings.  The terminal servers applied the initial GPO for both the computer and user settings when the GPO was enabled the first time.  I have since modified the GPO to disable one of the user configuration settings and add a new user configuration setting.  Now the server no longer applies the user configuration settings.  The computer configuration settings still indicate that the policy loaded successfully.  We have run gpupdate /force several times and even restarted the server a couple of times without any positive results.  On the terminal servers that we are testing with has been added to the GPO scope.  The authenticated users group is the only other item in the security filter in the scope.  There are no "deny" permissions in in the delegation list.

What else do I need to look at to find the problem?

Brian Ladley
Systems Administrator III
Helping a friend a couple hours away add encryption to their wireless network using an apple airport as the wifi source.

They have some wireless cameras (and some wired... I am hoping these are the same model cameras both with wifi and RJ45?)

using the foscam camera's web interface, I set the wireless encryption key on each of the wireless cameras - a 7 character password that they accepted.

Then tried adding the encryption key in his airport. But it wanted at least 8 characters.  We changed the password to one that has 8 characters but are now unable to access those wireless cameras.

Any ideas on how to get into the web admin / set them to the new 8 character wifi password?  And again, they are 2 hours away and not tech savvy. I really don't want to have to drive out there.

I’m thinking get him a 100' cat 5 cable and he'd run it from the airport to each camera’s RJ45 port then they’d get on the network, maybe with a different IP address and I can remotely get into the web interface and change the wifi password??

Or because they are set up for wireless now, they ignore activity on the RJ45?

Other ideas?

hi guys

Are any of you working on implementing GDPR that plans to come into effect next March?

If so, do you have a list of things that need to be implemented technically on infrastructure, storage and network security?
I am looking for something that would have a list of 'to-do's' like:

"Must implement password complexity of one letter, number and eight characters that change every 30 days"
"Transfer of data from local source to destination must be recorded and its location known"

I just made the above up, but basically are there any lists that one could follow as guidance for the entire infrastructure?

Thanks for helping
Hello all,
I will be migrating a Watchguard XTM505 to a Watchguard M370.  I understand the step by step portion of the policy manager.
My question is that before I import the configuration file from the policy manager to the new M370 do I need to activate the new M370 or do anything else to it?
Kelly W.
I got this email from AOL:

We hope you are enjoying your improved email experience since switching to AOL. We are committed to protecting the privacy and security of our customers so we're writing to inform you that your current third party email application is not using the latest, secure mail connection settings. In order to continue sending and receiving your verizon.net mail via your third party email application, you must update your connection settings by November 7, 2017.

I want to keep my current email address, f.kavanagh@verizon.net but I do not know what to do.   I do not want to create a new email address with an AOL address.
I keep getting this message on my desktop.""windows 10 : something went wrong. Microsoft can not install important security updates on your PC . Please contact microsoft support for help with this error. Please provide support representative with this error code
 0X80070005  then on the bottom it says Hide or Try Again"".

No matter how many times I click on try again nothing happens . Hide it hides the message .

Please help me do the updates.






Security is the protection of information systems from theft or damage to the hardware, the software, and to the information on them, as well as from disruption or misdirection of the services they provide. Computer systems now include a very wide variety of "smart" devices, including smartphones, televisions and tiny devices as part of the Internet of Things -– and networks include not only the Internet and private data networks, but also Bluetooth, Wi-Fi and other wireless networks.