Jeff Goldman, Author at eSecurity Planet

About
Recent Articles

eSecurity Planet contributor Jeff Goldman has been a technology journalist for more than 20 years and an eSecurity Planet contributor since 2009. He’s also written extensively about wireless and broadband infrastructure and semiconductor engineering. He started his career at MTV, but soon decided that technology writing was a more promising path.

Windows PGM Accounts for Half of Patch Tuesday’s Critical Flaws

Threats

June 13, 2023

Microsoft’s Patch Tuesday for June 2023 addresses 78 vulnerabilities, a significant increase from last month’s total of 37. While six of the flaws are critical, Microsoft says none are currently…
5 Ways to Configure a SIEM for Accurate Threat Detection

Trends

June 6, 2023

A security information and event management (SIEM) system is about as complicated as a security tool can get, pulling in log and threat data from a wide range of sources…
New Apple RSR Flaw Blocks MDM Functionality on macOS Devices

Mobile

May 24, 2023

Addigy, which provides management solutions for Apple devices, today warned that Apple’s new Rapid Security Response (RSR) updates aren’t being delivered to as many as 25 percent of macOS devices…
A Threat to Passkeys? BrutePrint Attack Bypasses Fingerprint Authentication

Mobile

May 23, 2023

Security researchers recently published a paper detailing an attack they say can be used to bypass smartphone fingerprint authentication. Yiling He of China’s Zhejiang University and Yu Chen of Tencent…
Cisco Warns of Multiple Flaws in Small Business Series Switches

Threats

May 18, 2023

Cisco is warning that nine significant vulnerabilities in its Small Business Series Switches could enable unauthenticated remote attackers to cause a denial-of-service condition or execute arbitrary code with root privileges…
Microsoft Flaws Include Secure Boot Bypass, System-Level Takeovers

Threats

May 10, 2023

Microsoft’s Patch Tuesday for May 2023 fixes two actively exploited vulnerabilities, including a Secure Boot bypass and system-level takeover.
Google Launches Passkeys in Major Push for Passwordless Authentication

Applications

May 4, 2023

Passkeys are a promising technology for passwordless authentication, and Google is leading the way.
Misconfigured Registries: Security Researchers Find 250 Million Artifacts Exposed

Threats

April 24, 2023

Development teams are exposing critical data and secrets online. Here’s what to do about it.
Attackers Continue to Leverage Signed Microsoft Drivers

Threats

April 21, 2023

In December of last year, Microsoft worked with SentinelOne, Mandiant, and Sophos to respond to an issue in which drivers certified by Microsoft’s Windows Hardware Developer Program were being used…
Windows CLFS Vulnerability Used for Ransomware Attacks

Threats

April 12, 2023

Microsoft’s Patch Tuesday for April 2023 targets 97 vulnerabilities, seven of them rated critical – as well as one that’s currently being exploited in the wild. The one flaw that’s…