Microsoft looks to Rust language to beat memory vulnerabilities

Credit to Author: John E Dunn| Date: Wed, 04 Dec 2019 11:41:36 +0000

Microsoft is pressing ahead with an ambitious plan to de-fang common vulnerabilities hiding in old Windows code with the help of Rust.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/Y3XJT2q7OEs” height=”1″ width=”1″ alt=””/>

Read more

Office for Mac 2011 users warned about SYLK file format

Credit to Author: John E Dunn| Date: Tue, 05 Nov 2019 17:14:21 +0000

Still running Office 2011 on a Mac? If so, there are at least two reasons why that might not be a good idea.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/HjBh551ovHI” height=”1″ width=”1″ alt=””/>

Read more

October Patch Tuesday: Microsoft fixes critical remote desktop bug

Credit to Author: Danny Bradbury| Date: Wed, 09 Oct 2019 12:14:46 +0000

Microsoft fixed 59 vulnerabilities in October’s Patch Tuesday, including several critical remote code execution (RCE) flaws.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/jWWY6mMadts” height=”1″ width=”1″ alt=””/>

Read more

Cloudflare adds VPN features to 1.1.1.1 privacy app

Credit to Author: John E Dunn| Date: Tue, 01 Oct 2019 13:07:47 +0000

As promised in April, Cloudflare has finally launched Warp, a consumer mobile privacy app that looks a lot like a VPN without actually being one.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/IXc1HLdLZ1Y” height=”1″ width=”1″ alt=””/>

Read more

Google fixes Chromebook 2FA flaw in ‘built-in security key’

Credit to Author: John E Dunn| Date: Mon, 16 Sep 2019 11:35:33 +0000

Google has discovered a flaw in a Chromebook security feature which allows owners to press their device’s power button to initiate U2F 2FA.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/wxhr_hHEAl8″ height=”1″ width=”1″ alt=””/>

Read more

Simjacker silent phone hack could affect a billion users

Credit to Author: Danny Bradbury| Date: Mon, 16 Sep 2019 11:24:13 +0000

The shadowy world of phone-surveillance-for-hire became a little clearer last week following the discovery of a phone exploit called Simjacker.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/QZ2DMZ452TM” height=”1″ width=”1″ alt=””/>

Read more

Android gets September update as price of flaws soars

Credit to Author: John E Dunn| Date: Thu, 05 Sep 2019 13:51:21 +0000

When is a security update not a security update? When it’s patching flaws in a version of an OS nobody beyond developers is yet running.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/xUkOcZUm9To” height=”1″ width=”1″ alt=””/>

Read more