security
Better patch Windows Server ASAP as remotely exploitable vulnerability found
by Surur
2 weeks
IT staff are not often the fastest to install patches, lest they cause more issues than they solve, but a new vulnerability in all versions of Windows 10 and Windows Server suggests they may need to rethink that policy. The CERT C...
Latest Windows 10 Zero-day Privilege Escalation bug would allow attacker to overwrite arbitrary files with dat...
by Surur
2 weeks
A hacker has found another way to break the Windows 10 app security model. SandboxEscaper, who has posted 3 other zero-day bugs in Windows in the last 4 months, have published another which uses the Windows Error Reporting syste...
Malware-infested games downloaded more than 500,000 times on Google Play Store
by Surur
2 months
A security researcher has discovered that a hacker group has managed to smuggle 13 “games” into the Google Play Store which have collectively been installed more than 560,000 times. The malware, which poses as games, b...
Chrome 71 will block all ads for abusive websites automatically
2 months
Google launched an ad blocking experience in Chrome earlier this year, and now the firm is expanding on those efforts with Chrome 71. “Starting in December 2018, Chrome 71 will remove all ads on the small number of sites wi...
Satya Nadella: Microsoft doesn’t “overmonetise” your data
2 months
Microsoft’s Satya Nadella reaffirmed his firm’s commitment to privacy this weekend in an interview with the UK’s Times after its Future Decoded conference. The firm spoke about how it would be using data derived...
Security Researcher to release Edge browser Zero-day Remote Code Execution exploit soon
by Surur
2 months
Around one in 20 desktop web browsers need to start worrying, as security researcher Yushi Liang is preparing to release a Zero-Day exploit for the Edge browser which allows Remote Code Execution, including escaping the Edge sand...
UWP API bug means apps can steal ALL your data without you knowing
by Surur
3 months
It turns out an important UWP API in Windows 10 has a bug which mean malicious developers are free to roam all over your hard drive and steal any of your data. UWP apps are meant to be safer due to being sandboxed and confined to ...
Microsoft patches zero-day Windows 10 exploit being used for targeted attacks
by Surur
3 months
In the latest Cumulative Update, Microsoft has patched a vulnerability in Windows 10 discovered and reported by Kaspersky in August 2018 which was being used in very targetted attacks in the middle east. Microsoft writes: CVE-201...
Bloomberg responds to Apple’s denials with fresh evidence of pervasive hardware hacking
by Surur
3 months
Bloomberg has recently been embroiled in controversy after they accused industry supplier Supermicro of supplying motherboards infected with compromised chips which could be used to steal data from servers from companies such as A...
Microsoft announces several new security features to protect user data
by Pradeep
4 months
At Ignite 2018 today, Microsoft announced several new security features in its products to protect user data. The main highlight is the support for password-less logins in Azure-AD based apps. You can read more about it here. Micr...
As consumer facial recognition software becomes more omnipresent, Microsoft’s call for regulation seems ...
4 months
On Friday, Apple will release the iPhone XS and XS Max with the XR coming in October. All these phones will partake in the annual ritual of being praised for their Appleness and criticised for the price, as per usual. These device...