Homeland Security Issues Windows Bug Alert

06Jun

caspar-camille-rubin-7SDoly3FV_0-unsplash-scaled-e1617808734335 | Green Key Resources

Tens of thousands – perhaps hundreds of thousands — of Windows 10 users are vulnerable to a “wormable bug” so serious it has been given the highest score possible of the Common Vulnerability Scoring System.

Although Microsoft issued a fix for the bug in March, Homeland Security’s Cybersecurity and Infrastructure Security Agency issued an alert warning of the potential risk to systems that have not installed the fix.

Commonly referred to as SMBGhost, the vulnerability in Windows 10 systems was recently shown to be exploitable. That could give hackers complete access to the computer and, because the vulnerability is considered “wormable,” the exploit code can spread throughout a network, infecting all connected Windows 10 systems.

By default, Windows 10 automatically checks and installs updates. Home and small business users should already have the patch installed. You can check by following the directions from Microsoft.

However, estimates of the unprotected PCs range from the tens of thousands into the hundreds of thousands. For these systems, the risk of being successfully attacked and having the exploit spread is what prompted the Homeland Security warning. The agency warned that “Malicious cyber actors are targeting unpatched systems.”

In 2017, a wormable bug lead to the WannaCry ransomware spread, which disrupted businesses, government and transportation, and in the UK forced hospitals to halt activities and even turn patients away. Microsoft had issued a patch for the hacking tools that had been developed and stolen from the National Security Agency, but millions did not install it, leading to the disruption and damages worldwide estimated in the billions.

Photo by Caspar Camille Rubin on Unsplash

[bdp_post_carousel]

nick-chong-0bO235Rhqec-unsplash-scaled-e1617735440713 | Green Key Resources

Information Technology

Jun 6, 2023

Cryptocurrency’s Developer Gold Rush

Information Technology

Jun 6, 2023

Cryptocurrency’s Developer Gold Rush

The hottest new industry for software developers is one they last flocked to in 2017 — cryptocurrency.

Citing a report by the crypto VC firm Electric Capital, Bloomberg says the number of new tech professionals going to work for cryptocurrency startups and taking on decentralized finance (DeFi) projects has been increasing at the rate of 15% per month since January. That’s about 13,600 new developers joining the crypto sector through October, according to Electric’s numbers.

Bloomberg reports that 80% of all active developers began their work in just the last two years.

Overall, however, the number of software developers working in cryptocurrency has stayed flat. Electric says the incoming professionals have gone to work mostly for the top 200 ecosystems. Outside those 200, there’s been a 30% exodus since December 2018.

The total pool of active crypto developers is about 9,000 a month, according to the report.

Yahoo Finance explains that “The [Electric Capital] report tracks ecosystems by blockchain. In other words, a Bitcoin developer is counted toward Bitcoin even if the person is working on its Lightning Network or any of its wallets.”

That developers are joining the top ecosystems and leaving those at the bottom is, Bloomberg says, “one of the best barometers of a project’s promise and health.”

Maria Shen, a partner at Electric, told Bloomberg, “Developers are one of the signals of quality in a crypto ecosystem.”

The big winner, she says, is Ethereum. With more than 300 developers a month joining the organization, Shen told Yahoo, “Ethereum has continuously grown through Crypto Winter.”

Electric’s survey of publicly available code documentation on GitHub and GitLab and elsewhere shows Ethereum had about 2,300 developers working monthly in the third quarter of the year. It’s closest competitor, Bitcoin, had 400.

Meanwhile, the report says the average monthly number of developers working on DeFi projects grew 67% since January. (Wikipedia defines DeFi as “an experimental form of finance that does not rely on central financial intermediaries such as brokerages, exchanges, or banks, and instead utilizes smart contracts on blockchains.”

Ken Deeter, an Electric Capital partner, suggested to Coindesk that developer interest in DeFi could be partially attributed to developers from fintech frustrated by what they can’t do there.

“DeFi is a really interesting area … where there’s an ability for developers to really experiment in a way that in the traditional financial system is difficult to do.”

Photo by Nick Chong on Unsplash

[bdp_post_carousel]

Read Continue