Tech Gumbo
·S7 E634
Microsoft Kills SMS Login, Hackers Harass Researchers, and CISA Security Lapse, Kindle EOL
Episode Description
News and Updates:
- Microsoft Ditches SMS Two-Factor Authentication: Microsoft is phasing out SMS-based login codes, citing fraud vulnerability, and pushing users toward more secure passkeys using biometrics or device PINs.
- Faulty Drivers Secretly Draining Windows 11 Batteries: Microsoft admits third-party drivers have silently prevented laptops from entering hibernation for years, announcing stricter driver evaluation and automatic rollback via Windows Update.
- ShinyHunters Targets Cybersecurity Researcher: Hacking gang ShinyHunters is flooding Unit 221B with calls and emails after researcher Allison Nixon publicly urged victims not to pay the group's ransom demands.
- CISA Exposes Own Passwords on Public GitHub: The U.S. cybersecurity agency left plaintext passwords, AWS tokens, and access keys in a public GitHub repo named "Private-CISA" for approximately six months before discovery.
- Kindle Owners Jailbreak Devices After Amazon Drops Support: Amazon is ending support for 13 older Kindle models on May 20, prompting users to jailbreak their devices to maintain full functionality beyond already-downloaded content.