{"id":42690,"date":"2021-12-16T16:26:46","date_gmt":"2021-12-16T16:26:46","guid":{"rendered":"http:\/\/icloud.pe\/blog\/?guid=46506092165589dfa9a1d74fd308236c"},"modified":"2021-12-16T16:26:46","modified_gmt":"2021-12-16T16:26:46","slug":"the-most-spectacular-tech-gaffes-of-2021","status":"publish","type":"post","link":"https:\/\/icloud.pe\/blog\/the-most-spectacular-tech-gaffes-of-2021\/","title":{"rendered":"The most spectacular tech gaffes of 2021"},"content":{"rendered":"<p><span class=\"field field-name-field-author field-type-node-reference field-label-hidden\"><br \/>\n      <span class=\"field-item even\"><a href=\"https:\/\/www.cloudpro.co.uk\/authors\/carly-page\">Carly Page<\/a><\/span><br \/>\n  <\/span><\/p>\n<div class=\"field field-name-field-published-date field-type-datetime field-label-hidden\">\n<div class=\"field-items\">\n<div class=\"field-item even\"><span class=\"date-display-single\">30 Dec, 2021<\/span><\/div>\n<\/p><\/div>\n<\/div>\n<p class=\"short-teaser\">\n<a href=\"https:\/\/www.cloudpro.co.uk\/\" title=\"\" class=\"combined-link\"><\/a><\/p>\n<div class=\"field field-name-body\">\n<p>No year passes without incident, and that\u2019s especially true for a 12-month period equally blighted with <a href=\"https:\/\/www.itpro.co.uk\/covid-19\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/covid-19\">COVID-19<\/a> as it was with tech-related mishaps and mix-ups.<\/p>\n<p>From public sector IT blunders to catastrophic cyber security failings, here\u2019s our pick of the most eye-catching and alarming incidents to grace the headlines.\u00a0<\/p>\n<h2>Government-funded laptops arrive in schools loaded with malware<\/h2>\n<div id=\"file-8214\" class=\"file file-image file-image-jpeg file-content-full-width\">\n<div class=\"content\">    <img decoding=\"async\" src=\"https:\/\/cdn1.cloudpro.co.uk\/sites\/cloudprod7\/files\/styles\/insert_main_wide_image\/public\/2021\/12\/gettyimages-1161169055.jpg?itok=dxiUVmI3\" alt=\"\" \/>  <\/div>\n<\/div>\n<p>The UK government welcomed us into 2021 with a major IT blunder that saw it <a href=\"https:\/\/www.itpro.co.uk\/security\/malware\/358393\/laptops-sent-from-gov-to-schools-infected-with-malware\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/malware\/358393\/laptops-sent-from-gov-to-schools-infected-with-malware\">issue malware-infested laptops to vulnerable children<\/a>. A number of these devices were found to be infected with a &#8220;self-propagating network worm&#8221;, and also appeared to be communicating with Russian servers.\u00a0<\/p>\n<p>The Windows-based laptops were, specifically, infected with Gamarue.1, a worm Microsoft first identified in 2012. At the time, the Department of Education said it was \u201curgently investigating\u201d the issue that had only affected a \u201csmall number of devices.\u201d<\/p>\n<h2>Slack kickstarts 2021 with a major outage\u00a0<\/h2>\n<div id=\"file-8215\" class=\"file file-image file-image-jpeg file-content-full-width\">\n<div class=\"content\">    <img decoding=\"async\" src=\"https:\/\/cdn2.cloudpro.co.uk\/sites\/cloudprod7\/files\/styles\/insert_main_wide_image\/public\/2021\/12\/slack_salesforceapps_shutterstock.jpg?itok=vhHXPAeP\" alt=\"\" \/>  <\/div>\n<\/div>\n<p><a href=\"https:\/\/www.itpro.co.uk\/business-strategy\/collaboration\/359553\/slack-connect-vs-microsoft-teams-connect\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/business-strategy\/collaboration\/359553\/slack-connect-vs-microsoft-teams-connect\">Slack<\/a>, meanwhile, also started 2021 on the wrong footing, with the now <a href=\"https:\/\/www.itpro.co.uk\/business-strategy\/collaboration\/360317\/salesforce-slack-acquisition-what-happens-next\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/business-strategy\/collaboration\/360317\/salesforce-slack-acquisition-what-happens-next\">Salesforce-owned<\/a> business communications platform suffering a major outage on 4 January as employees across the globe began to log back onto their systems to start their working year afresh.\u00a0<\/p>\n<p>The outage saw team members unable to reliably send or receive messages, with some users also struggling to log into the service altogether.<\/p>\n<h2>Home Office wipes 15,000 police records<\/h2>\n<div id=\"file-8216\" class=\"file file-image file-image-jpeg file-content-full-width\">\n<div class=\"content\">    <img decoding=\"async\" src=\"https:\/\/cdn1.cloudpro.co.uk\/sites\/cloudprod7\/files\/styles\/insert_main_wide_image\/public\/2021\/12\/gettyimages-1124474419.jpg?itok=zvJvL2WX\" alt=\"\" \/>  <\/div>\n<\/div>\n<p>Back in February, the Home Office was forced to admit it had inadvertently deleted the records of more than 15,000 people from the Police National Computer (<span class=\"scayt-misspell-word\" data-scayt-word=\"PNC\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h0ncccrxhfdmy\">PNC<\/span>).\u00a0<\/p>\n<p>A total of 209,550 offence records that related to 112,697 individuals were wiped from the system, including crucial evidence such as <a href=\"https:\/\/www.itpro.co.uk\/security\/29705\/what-are-biometrics\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/29705\/what-are-biometrics\">fingerprint scans, DNA<\/a> and arrest records. This &#8220;critical incident&#8221; was later <a href=\"https:\/\/www.itpro.co.uk\/business-strategy\/digital-transformation\/359673\/deleted-police-records-were-on-a-70s-it-system\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/business-strategy\/digital-transformation\/359673\/deleted-police-records-were-on-a-70s-it-system\">blamed<\/a> on a combination of &#8220;human error&#8221; and failures at the management level.\u00a0<\/p>\n<h2>SolarWinds blames intern for weak \u2018solarwinds123\u2019 password<\/h2>\n<div id=\"file-8217\" class=\"file file-image file-image-jpeg file-content-full-width\">\n<div class=\"content\">    <img decoding=\"async\" src=\"https:\/\/cdn2.cloudpro.co.uk\/sites\/cloudprod7\/files\/styles\/insert_main_wide_image\/public\/2021\/12\/solarwinds_shutterstock.jpg?itok=-wgyggkr\" alt=\"\" \/>  <\/div>\n<\/div>\n<div data-editor-embed-uuid=\"1130754161258782306\" data-embed-button=\"paragraphs_inline_entity_form\" data-entity-embed-display=\"view_mode:paragraph.preview\" data-entity-type=\"paragraph\" data-entity-uuid=\"5146d954-6e79-43a2-8f12-3bf08702f366\" data-langcode=\"en\" class=\"embedded-entity\">\n<div class=\"paragraph paragraph--type--media paragraph--view-mode--preview\">\n<div class=\"field field--name-field-credit field--type-string field--label-above\">Following the devastating supply-chain attack towards the tail end of 2020, <span class=\"scayt-misspell-word\" data-scayt-word=\"SolarWinds\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h0toqha7xkims\">SolarWinds<\/span> <a href=\"https:\/\/www.itpro.co.uk\/security\/cyber-attacks\/358738\/intern-blamed-for-weak-password-that-may-have-sparked-solarwinds\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/cyber-attacks\/358738\/intern-blamed-for-weak-password-that-may-have-sparked-solarwinds\">admitted<\/a> a former intern had leaked a weak company password that was publicly accessible on the <span class=\"scayt-misspell-word\" data-scayt-word=\"internet\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h0toq66q51mxn\">internet<\/span> for more than a year.\u00a0<\/div>\n<\/div>\n<\/div>\n<p>The password \u2018solarwinds123\u2019 \u2013 a <a href=\"https:\/\/www.itpro.co.uk\/security\/34616\/the-top-password-cracking-techniques-used-by-hackers\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/34616\/the-top-password-cracking-techniques-used-by-hackers\">critical lapse in password security<\/a> \u2013 was publicly accessible through a private <span class=\"scayt-misspell-word\" data-scayt-word=\"GitHub\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h0wqtz79v5phs\">GitHub<\/span> repository from June 2018, before this was finally addressed in November 2019.\u00a0<\/p>\n<p><span class=\"scayt-misspell-word\" data-scayt-word=\"SolarWinds\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h1c10veuxfx0w\">SolarWinds<\/span> failed to mention, however, whether the password played a role in the major cyber attack the company sustained. This incident saw up to 18,000 businesses compromised by a version of its Orion security platform loaded with malware. The incident, nevertheless, serves as a reminder for businesses to stay on top of information security as we transition on into a more dangerous than ever 2022.<span style=\"font-size: 0.8125em;\"> <\/span><\/p>\n<h2>Australia\u2019s Channel Nine interrupted by cyber attack<\/h2>\n<div id=\"file-8218\" class=\"file file-image file-image-jpeg file-content-original\">\n<div class=\"content\">    <img decoding=\"async\" src=\"https:\/\/cdn1.cloudpro.co.uk\/sites\/cloudprod7\/files\/2021\/12\/gettyimages-network_tv.jpg\" alt=\"\" \/>  <\/div>\n<\/div>\n<div data-editor-embed-uuid=\"1.0434342311825E+19\" data-embed-button=\"paragraphs_inline_entity_form\" data-entity-embed-display=\"view_mode:paragraph.preview\" data-entity-type=\"paragraph\" data-entity-uuid=\"c4c53e38-bece-4070-81c8-bb3edfdff037\" data-langcode=\"en\" class=\"embedded-entity\">\n<div class=\"paragraph paragraph--type--media paragraph--view-mode--preview\">\n<div class=\"field field--name-field-credit field--type-string field--label-above\"><\/div>\n<\/div>\n<\/div>\n<p>In March this\u00a0year, <a href=\"https:\/\/www.itpro.co.uk\/security\/cyber-attacks\/359048\/australias-channel-9-hit-by-cyber-attack-during-live-broadcast\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/cyber-attacks\/359048\/australias-channel-9-hit-by-cyber-attack-during-live-broadcast\">an unknown assailant took down a live broadcast by Australia&#8217;s Channel Nine TV station<\/a>. This ransomware attack locked staff out of emails, <span class=\"scayt-misspell-word\" data-scayt-word=\"internet\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h0zu8pz20geqb\">internet<\/span> access and print production systems.<\/p>\n<div data-editor-embed-uuid=\"1456796652269764759\" data-embed-button=\"paragraphs_inline_entity_form\" data-entity-embed-display=\"view_mode:paragraph.preview\" data-entity-type=\"paragraph\" data-entity-uuid=\"77e3dc69-f50c-4d0d-9a30-072afac19191\" data-langcode=\"en\" class=\"embedded-entity\">\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\" xml:lang=\"en\">What\u2019s happening? Well not much right now! Tech issues \u2066<a href=\"https:\/\/twitter.com\/Channel9?ref_src=twsrc%5Etfw\">@Channel9<\/a>\u2069 this morning&#8230; <a href=\"https:\/\/t.co\/yvHBbxdbGC\">pic.twitter.com\/yvHBbxdbGC<\/a><\/p>\n<p>\u2014 Richard Wilkins (@RichardWilkins) <a href=\"https:\/\/twitter.com\/RichardWilkins\/status\/1375922572957675520?ref_src=twsrc%5Etfw\">March 27, 2021<\/a><\/p>\n<\/blockquote>\n<p><script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\" type=\"mce-text\/javascript\"><\/script><\/div>\n<p>This incident, which serves as a concise visual metaphor for the disruptive effects of cyber crime, has since been described as the largest cyber attack to hit a media company in Australia&#8217;s history. The incident itself affected several shows, including the <em>Weekend Today <\/em>programme, and forced the Sydney-based organisation to shift to its Melbourne studios.<\/p>\n<h2>Cause of the OVH data centre fire won\u2019t be revealed until 2022<\/h2>\n<div data-editor-embed-uuid=\"1.777955989178E+19\" data-embed-button=\"paragraphs_inline_entity_form\" data-entity-embed-display=\"view_mode:paragraph.preview\" data-entity-type=\"paragraph\" data-entity-uuid=\"12a50093-ce18-4e2a-b70a-1d5d0aa29cb1\" data-langcode=\"en\" class=\"embedded-entity\">\n<div class=\"paragraph paragraph--type--media paragraph--view-mode--preview\">\n<div class=\"field field--name-field-credit field--type-string field--label-above\">\n<div id=\"file-8219\" class=\"file file-image file-image-jpeg file-content-full-width\">\n<div class=\"content\">    <img decoding=\"async\" src=\"https:\/\/cdn1.cloudpro.co.uk\/sites\/cloudprod7\/files\/styles\/insert_main_wide_image\/public\/2021\/12\/server_fire-shutterstock.jpg?itok=9gV1Skby\" alt=\"\" \/>  <\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<p>March played host to a series of incidents, as we also saw <a href=\"https:\/\/www.itpro.co.uk\/server-storage\/data-centres\/358855\/investigation-underway-into-cause-of-ovh-data-centre-fire\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/server-storage\/data-centres\/358855\/investigation-underway-into-cause-of-ovh-data-centre-fire\">a fire erupt at an OVH data centre<\/a> in the French city of Strasbourg. The destruction resulted in both the loss of data and service outages across Europe.\u00a0 The incident was first reported on 10 March and the firefighters, although they responded almost immediately, were unable to stop a blaze inside the SBG2 building. Four rooms inside SBG1 were also destroyed, although two other data centres owned by <span class=\"scayt-misspell-word\" data-scayt-word=\"OVH\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h1f7la4renn1m\">OVH<\/span> were not affected. The company, however, did have to switch off every one of its servers.\u00a0 The official root of the blaze still hasn\u2019t been revealed \u2013 and likely won\u2019t until 2022 with <span class=\"scayt-misspell-word\" data-scayt-word=\"OVHCloud\u2019s\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h1j318yz9k0f4\">OVHCloud\u2019s<\/span> chairman and founder Octave <span class=\"scayt-misspell-word\" data-scayt-word=\"Klaba\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h1j3dqo4niqfv\">Klaba<\/span> apologising for the incident, but remaining tight-lipped on the cause.<\/p>\n<div data-editor-embed-uuid=\"1020776940723697888\" data-embed-button=\"paragraphs_inline_entity_form\" data-entity-embed-display=\"view_mode:paragraph.preview\" data-entity-type=\"paragraph\" data-entity-uuid=\"952da284-6000-4a73-b7b8-6405e552e84a\" data-langcode=\"en\" class=\"embedded-entity\">\n<blockquote class=\"twitter-tweet\">\n<p>50 days after the incident in SBG, with <a href=\"https:\/\/twitter.com\/michel_paulin?ref_src=twsrc%5Etfw\">@michel_paulin<\/a>, to give you the current status of the recovery. <a href=\"https:\/\/t.co\/uVEYF5HufS\">pic.twitter.com\/uVEYF5HufS<\/a> \u2014 Octave Klaba (@olesovhcom) <a href=\"https:\/\/twitter.com\/olesovhcom\/status\/1389483264230965248?ref_src=twsrc%5Etfw\">May 4, 2021<\/a><\/p>\n<\/blockquote>\n<p><script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\" type=\"mce-text\/javascript\"><\/script><\/div>\n<h2>Gmail &#8220;more secure&#8221; than Parliamentary email, claims MP<\/h2>\n<div id=\"file-8220\" class=\"file file-image file-image-jpeg file-content-full-width\">\n<div class=\"content\">    <img decoding=\"async\" src=\"https:\/\/cdn2.cloudpro.co.uk\/sites\/cloudprod7\/files\/styles\/insert_main_wide_image\/public\/2021\/12\/gettyimages-1235885447.jpg?itok=p7kJbNNq\" alt=\"\" \/>  <\/div>\n<\/div>\n<div data-editor-embed-uuid=\"250166110756508834\" data-embed-button=\"paragraphs_inline_entity_form\" data-entity-embed-display=\"view_mode:paragraph.preview\" data-entity-type=\"paragraph\" data-entity-uuid=\"38cc2b8a-f4b1-4491-836e-e1b31a0ce956\" data-langcode=\"en\" class=\"embedded-entity\">\n<div class=\"paragraph paragraph--type--media paragraph--view-mode--preview\">\n<div class=\"field field--name-field-image field--type-image field--label-hidden field__item\">\n<p>In April, Conservative MP Tom <span class=\"scayt-misspell-word\" data-scayt-word=\"Tugendhat\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h1q5n9kny5vep\">Tugendhat<\/span> faced a litany of questions after claiming <span class=\"scayt-misspell-word\" data-scayt-word=\"GCHQ\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h1q4tac8i65jz\">GCHQ<\/span> advised him <a href=\"https:\/\/www.itpro.co.uk\/security\/cyber-security\/359192\/gmail-more-secure-than-parliamentary-emails-says-mp\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/cyber-security\/359192\/gmail-more-secure-than-parliamentary-emails-says-mp\">Gmail is safer to use<\/a> than the UK\u2019s own Parliamentary email system.\u00a0<\/p>\n<p>During a radio interview, he said he\u2019d been the subject of numerous <a href=\"https:\/\/www.itpro.co.uk\/security\/cyber-warfare\/361305\/counting-the-consequences-of-cyberattacks\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/cyber-warfare\/361305\/counting-the-consequences-of-cyberattacks\">cyber attacks<\/a>, adding <span class=\"scayt-misspell-word\" data-scayt-word=\"GCHQ\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h1zkmy35axwdf\">GCHQ<\/span> had informally advised him he would be better off using <a href=\"https:\/\/www.itpro.co.uk\/email-providers\/24794\/gmail-vs-outlookcom-which-one-is-better\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/email-providers\/24794\/gmail-vs-outlookcom-which-one-is-better\">Gmail<\/a> rather than the Parliamentary system as it was &#8220;more secure&#8221;.\u00a0<\/p>\n<p>\u201cFrankly, that tells you the level of security and the priority we\u2019re giving to <a href=\"https:\/\/www.itpro.co.uk\/security\/357591\/why-deepfakes-could-threaten-everything-from-biometrics-to-democracy\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/357591\/why-deepfakes-could-threaten-everything-from-biometrics-to-democracy\">democracy<\/a> in the United Kingdom,\u201d he said at the time. The incident echoed the poor security hygiene practices of the now digital secretary <a href=\"https:\/\/www.itpro.co.uk\/business-strategy\/public-sector\/360897\/nadine-dorries-appointed-digital-secretary-in-government\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/business-strategy\/public-sector\/360897\/nadine-dorries-appointed-digital-secretary-in-government\">Nadine Dorries<\/a>, when she admitted only a few years ago that she <a href=\"https:\/\/www.itpro.co.uk\/security\/30089\/3-reasons-why-nadine-dorries-is-totally-wrong-about-password-sharing\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/30089\/3-reasons-why-nadine-dorries-is-totally-wrong-about-password-sharing\">routinely shared her passwords<\/a> with office staff.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<h2>Train firm slammed over &#8216;bonus&#8217; phishing test\u00a0<\/h2>\n<div data-editor-embed-uuid=\"1783870676965122942\" data-embed-button=\"paragraphs_inline_entity_form\" data-entity-embed-display=\"view_mode:paragraph.preview\" data-entity-type=\"paragraph\" data-entity-uuid=\"eb0b89c5-62c8-4949-8497-bf08da5829d0\" data-langcode=\"en\" class=\"embedded-entity\">\n<div class=\"paragraph paragraph--type--media paragraph--view-mode--preview\">\n<div class=\"field field--name-field-credit field--type-string field--label-above\">\n<div id=\"file-8221\" class=\"file file-image file-image-jpeg file-content-full-width\">\n<div class=\"content\">    <img decoding=\"async\" src=\"https:\/\/cdn1.cloudpro.co.uk\/sites\/cloudprod7\/files\/styles\/insert_main_wide_image\/public\/2021\/12\/shutterstock_phishing.jpg?itok=pKYX6yqW\" alt=\"\" \/>  <\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<p>West Midlands Railway found itself in hot water in May after <a href=\"https:\/\/www.itpro.co.uk\/security\/phishing\/359490\/train-line-comes-under-fire-for-bonus-phishing-test\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/phishing\/359490\/train-line-comes-under-fire-for-bonus-phishing-test\">it dangled the prospect of a company-wide bonus for workers<\/a> as part of a lure in a <a href=\"https:\/\/www.itpro.co.uk\/security\/phishing\/360713\/phishing-attacks-increase-as-hackers-take-advantage-of-pandemic\" data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/phishing\/360713\/phishing-attacks-increase-as-hackers-take-advantage-of-pandemic\">phishing<\/a> simulation test.<span style=\"font-size: 0.8125em;\"> <\/span><\/p>\n<p>Julian Edwards, the train operator\u2019s managing director, emailed the company&#8217;s 2,500 employees with a message saying the firm wanted to thank them for their hard work during the <span class=\"scayt-misspell-word\" data-scayt-word=\"COVID\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h1t9j20df21hy\">COVID<\/span>-19 pandemic, promising a one-off payment. Those who clicked the link for the bonus, however, received a message telling them this was merely a &#8220;phishing simulation test&#8221; designed by the firm&#8217;s IT team to entice employees.<\/p>\n<p>The email was described as \u201ccrass and reprehensible\u201d by the leader of the Transport Salaried Staffs Association, Manuel <span class=\"scayt-misspell-word\" data-scayt-word=\"Cortes\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h1wgu2zfh1f3w\">Cortes<\/span>. Others in the cyber security community, meanwhile, struck a more diplomatic tone, suggesting this <a href=\"https:\/\/www.itpro.co.uk\/security\/scams\/355013\/10-quick-tips-for-identifying-phishing-emails\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/scams\/355013\/10-quick-tips-for-identifying-phishing-emails\">was exactly the type of lure <\/a>cyber criminals would deploy.<\/p>\n<h2>Researchers leak Windows zero-day exploit in fatal misunderstanding<\/h2>\n<div id=\"file-8222\" class=\"file file-image file-image-jpeg file-content-full-width\">\n<div class=\"content\">    <img decoding=\"async\" src=\"https:\/\/cdn1.cloudpro.co.uk\/sites\/cloudprod7\/files\/styles\/insert_main_wide_image\/public\/2021\/12\/gettyimages-windows_malware.jpg?itok=kiT3jz5g\" alt=\"\" \/>  <\/div>\n<\/div>\n<div data-editor-embed-uuid=\"4677253901186301936\" data-embed-button=\"paragraphs_inline_entity_form\" data-entity-embed-display=\"view_mode:paragraph.preview\" data-entity-type=\"paragraph\" data-entity-uuid=\"874a2d10-60de-4073-b19a-6c26eb477fa8\" data-langcode=\"en\" class=\"embedded-entity\">\n<div class=\"paragraph paragraph--type--media paragraph--view-mode--preview\">\n<div class=\"field field--name-field-image field--type-image field--label-hidden field__item\">\n<p>The <span class=\"scayt-misspell-word\" data-scayt-word=\"PrintNightmare\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h27ebbvdml7ao\">PrintNightmare<\/span> fiasco that raged through the summer perhaps became most widely-known for Microsoft\u2019s failure to quash the bug \u2013 with a <a href=\"https:\/\/www.itpro.co.uk\/security\/vulnerability\/360145\/microsofts-emergency-printnightmare-patch-can-be-bypassed\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/vulnerability\/360145\/microsofts-emergency-printnightmare-patch-can-be-bypassed\">handful of faulty patches<\/a> released for <a href=\"https:\/\/www.itpro.co.uk\/security\/vulnerability\/360275\/alarm-sounded-over-further-printspooler-vulnerabilities\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/vulnerability\/360275\/alarm-sounded-over-further-printspooler-vulnerabilities\">several flaws<\/a>. The origins of the first exploit\u2019s initial disclosure, however, will go down in cyber security infamy.<\/p>\n<p>The comedy of errors began when Microsoft upgraded the status of an already-patched <span class=\"scayt-misspell-word\" data-scayt-word=\"PrintSpooler\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h2ai22iz6pcax\">PrintSpooler<\/span> component vulnerability, rated 8.8 on the <span class=\"scayt-misspell-word\" data-scayt-word=\"CVSS\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h2aidxfovje4o\">CVSS<\/span> threat severity scale, from privilege escalation to remote code execution. This prompted the firm <span class=\"scayt-misspell-word\" data-scayt-word=\"Sangfor\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h2dke9z4yhcgx\">Sangfor<\/span>, which was conducting its own research into <span class=\"scayt-misspell-word\" data-scayt-word=\"PrintSpooler\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h2dk0jo6qp82p\">PrintSpooler<\/span> flaws at the time, to publish research into an <span class=\"scayt-misspell-word\" data-scayt-word=\"RCE\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h2dk7brhq72tp\">RCE<\/span> <span class=\"scayt-misspell-word\" data-scayt-word=\"PrintSpooler\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h2dkuidyvx0fj\">PrintSpooler<\/span> flaw, including a fully usable exploit.<\/p>\n<p>The company believed the two bugs \u2013 the recently-upgraded flaw and that it had just published research on \u2013 to be the same, but they had in fact just <a href=\"https:\/\/www.itpro.co.uk\/security\/exploits\/360091\/hackers-are-abusing-the-leaked-printnightmare-windows-exploit\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/exploits\/360091\/hackers-are-abusing-the-leaked-printnightmare-windows-exploit\">published a working exploit<\/a> for an entirely different, undiscovered, flaw.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<h2>Kaspersky generates passwords that can be \u2018cracked in seconds\u2019<\/h2>\n<div id=\"file-8223\" class=\"file file-image file-image-jpeg file-content-full-width\">\n<div class=\"content\">    <img decoding=\"async\" src=\"https:\/\/cdn1.cloudpro.co.uk\/sites\/cloudprod7\/files\/styles\/insert_main_wide_image\/public\/2021\/12\/kasperskyantivirus_shutterstock.jpg?itok=XykfWrVl\" alt=\"\" \/>  <\/div>\n<\/div>\n<div data-editor-embed-uuid=\"307290129328670\" data-embed-button=\"paragraphs_inline_entity_form\" data-entity-embed-display=\"view_mode:paragraph.preview\" data-entity-type=\"paragraph\" data-entity-uuid=\"c2367d92-dc8a-42b7-a9b0-84aba5e80a0e\" data-langcode=\"en\" class=\"embedded-entity\">\n<div class=\"paragraph paragraph--type--media paragraph--view-mode--preview\">\n<p>In July we learned that <a href=\"https:\/\/www.itpro.co.uk\/security\/information-security-infosec\/360139\/passwords-generated-by-kaspersky-password-manager-can\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/information-security-infosec\/360139\/passwords-generated-by-kaspersky-password-manager-can\">Kaspersky Password Manager (KPM) was embedded with several problems<\/a> that meant the passwords it generated could be cracked using brute force techniques \u201cin seconds\u201d.\u00a0<\/p>\n<p>The <a href=\"https:\/\/www.itpro.co.uk\/security\/information-security-infosec\/361806\/skip-three-words-use-password-managers\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/security\/information-security-infosec\/361806\/skip-three-words-use-password-managers\">password generator<\/a> created passwords from a given policy, with users able to set parameters to change password length and include uppercase letters, lowercase letters, digits and special characters. By default, <span class=\"scayt-misspell-word\" data-scayt-word=\"KPM\" data-wsc-lang=\"en_GB\" data-wsc-id=\"kx96h2hkbtpox0np5\">KPM<\/span> generated 12-character passwords with an extended chart set.\u00a0<\/p>\n<p>The generation process is a complex method but effectively meant letters such as q, z and x were more likely to appear than in the average password manager. Once any given letter was generated, it skewed the probability of other letters appearing in the same string.<\/p>\n<\/div>\n<h2 class=\"paragraph paragraph--type--media paragraph--view-mode--preview\">&#8216;Fault configuration change&#8217; takes Facebook, and others, offline<\/h2>\n<div class=\"paragraph paragraph--type--media paragraph--view-mode--preview\">\n<div id=\"file-8224\" class=\"file file-image file-image-jpeg file-content-full-width\">\n<div class=\"content\">    <img decoding=\"async\" src=\"https:\/\/cdn2.cloudpro.co.uk\/sites\/cloudprod7\/files\/styles\/insert_main_wide_image\/public\/2021\/12\/facebook_app_deleteshutterstock.jpg?itok=jAb-cO0p\" alt=\"\" \/>  <\/div>\n<\/div>\n<\/div>\n<\/div>\n<div data-editor-embed-uuid=\"360423316819229268\" data-embed-button=\"paragraphs_inline_entity_form\" data-entity-embed-display=\"view_mode:paragraph.preview\" data-entity-type=\"paragraph\" data-entity-uuid=\"5f3406f0-1dbd-4dda-8946-b093978e227b\" data-langcode=\"en\" class=\"embedded-entity\">\n<div class=\"paragraph paragraph--type--media paragraph--view-mode--preview\">\n<div class=\"field field--name-field-image field--type-image field--label-hidden field__item\">\n<p>In October, Facebook suffered one of the worst outages in its nearly 20-year history. The outage, which the social network has <a href=\"https:\/\/www.itpro.co.uk\/infrastructure\/network-internet\/361114\/facebook-whatsapp-instagram-outage-faulty-configuration-change\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/infrastructure\/network-internet\/361114\/facebook-whatsapp-instagram-outage-faulty-configuration-change\">since been blamed on a \u201cfaulty configuration change\u201d<\/a> took Facebook, Instagram and WhatsApp offline for more than six hours.\u00a0<\/p>\n<p>The outage cut off all internal communications, and even prevented employees from accessing critical data on third-party services <a href=\"https:\/\/www.itpro.co.uk\/collaboration\/33418\/how-to-get-more-out-of-google-drive\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/collaboration\/33418\/how-to-get-more-out-of-google-drive\">such as Google Docs<\/a>. Worse yet, it was reported at the time that Facebook sent engineers to one of its main data centres in California to remedy the issue, but the outage prevented staff from physically accessing company buildings and conference rooms with their badges.\u00a0\u00a0<\/p>\n<p>Mark Zuckerberg\u2019s personal wealth falling by $6 billion, by way of consequence, might seem a harsh result. This paled in comparison, however, to the impact the outage had on users in the developing world who are dependent on <a href=\"https:\/\/www.itpro.co.uk\/data-insights\/data-mining\/361209\/is-big-tech-the-new-east-india-company\"  data-cke-saved-href=\"https:\/\/www.itpro.co.uk\/data-insights\/data-mining\/361209\/is-big-tech-the-new-east-india-company\">Facebook\u2019s Free Basics programme<\/a> for essential communication, business and humanitarian activities.<\/p>\n<\/div>\n<\/div>\n<\/div><\/div>\n","protected":false},"excerpt":{"rendered":"<p>      Carly Page<\/p>\n<p>        30 Dec, 2021    <\/p>\n<p>      No year passes without incident, and that\u2019s especially true for a 12-month period equally blighted with COVID-19 as it was with tech-related mishaps and mix-ups.<br \/>\nFrom public sector IT blunders to &#8230;<\/p>\n","protected":false},"author":642,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[],"tags":[],"class_list":["post-42690","post","type-post","status-publish","format-standard","hentry"],"_links":{"self":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/42690","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/users\/642"}],"replies":[{"embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/comments?post=42690"}],"version-history":[{"count":1,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/42690\/revisions"}],"predecessor-version":[{"id":42691,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/42690\/revisions\/42691"}],"wp:attachment":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/media?parent=42690"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/categories?post=42690"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/tags?post=42690"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}