_medium.jpg)
CrowdStrike has shared details on Spyboy Terminator EDR killer. It is one of the EDRs, alongside the likes of Microsoft Defender, Avast, and more, that can be disabled by the evasion tool.
Security flaw RSS
_medium.jpg)
Microsoft recently began patching UEFI bootkit vulnerabilities with this month's Patch Tuesday update. The company has now released a helpful guide about blocking such Windows boot managers.
Microsoft has released details on how it plans to protect against unsupported, unpatched, vulnerable Exchange Servers. The tech giant says that it will throttle and eventually block such mails.
An AMD fTPM side channel security flaw dubbed "faulTPM" has been discovered by researchers. This security bug can even bypass BitLocker and it affects modern Windows 11-supported Ryzen chips.
Microsoft has issued PowerShell scripts for multiple security vulnerabilities on Windows 11 and Windows 10. These are for speculative side channel attack CPU flaws, thirteen in total.
Microsoft has published some helpful guidance against the BlackLotus UEFI bootkit vulnerability that can bypass Secure Boot, VBS, BitLocker, Windows Defender, and more to infect updated Windows PCs.
_medium.jpg)
Microsoft has released a couple of PowerShell scripts to address a BitLocker bypass security vulnerability issue. In its bulletin, the company has explained the differences between the two scripts.
BlackLotus, which is a bootkit, has been doing the rounds on the internet since last year. This bootkit is capable of bypassing Secure Boot, disabling BitLocker, Microsoft Defender, and more.
AMD has advised users to update Ryzen Master as it was vulnerable to a high severity flaw. This follows the earlier report today where the company's CPUs have begun exhibiting fTPM stutters on Linux.
Microsoft has formally announced that it has deprecated MSDT and its related troubleshooters. The company has explained in a document how the retirement is going to be a gradual phase out.
_medium.jpg)
Microsoft Defender, AVG, Avast, and more, were found vulnerable to a new zero-day security exploit through which harmless files, even system files, could be deleted using the anti-virus.
Today, Microsoft has issued important security fixes to address DoS vulnerabilities affecting .NET Core and Visual Studio. The patches are available via .NET 6.0.9 and .NET Core 3.1.29.
HP has warned that it has discovered a new high severity privilege escalation vulnerability inside its own Support Assistant software utility. The company has also issued a fix for the security flaw.
_medium.jpg)
Google has revealed an expansion to its Vulnerability Reward Program (VRP). It is designed to encourage privately reporting security flaws in open source software in exchange for monetary rewards.
Modern Intel processors consisting of 10th Gen, 11th Gen and 12th Gen CPUs have been found to be vulnerable to a new "ÆPIC" security flaw. The vulnerability is able to exploit Intel's APIC MMIO.
AMD Zen-based processors with Simultaneous Multi-threading (SMT) like Ryzen, Threadripper, EPYC, and Athlon CPUs have been found to be vulnerable to a new “SQUIP” side-channel attack.
Atlassian has disclosed yet another critical severity flaw in Confluence. The latest issue is very trivial to exploit as it involves leveraging hardcoded credentials to get wide access to Confluence.
Following in the footsteps of Chrome, Edge has received an update to fix a rather severe 0-day exploit too. This is because the issue affects all browsers based on Chromium, including Edge.
_medium.jpg)
Google has rolled out security updates for Chrome across various channels to fix a handful of issues, including one 0-day exploit. Details of the problem are private for now but it has high severity.
Microsoft has patched a major issue in Azure Service Fabric affecting Linux clusters on the cloud. The service is the backbone of many Microsoft projects including Cortana/Bing and Skype for Business.
QNAP has issued a patch of a security vulnerability that could affect certain configurations of its NAS Drives. The flaw resides in PHP that deals with FPM. It can allow remote code execution.
Several Intel CPUs from different generations have been found to be susceptible to new processor vulnerabilities related to MMIO Stale Data. Microsoft and Intel have published advisories about it.
_medium.jpg)
Following the recent Follina security vulnerability, another Microsoft Support Diagnostic Tool (MSDT) bug has been found called "DogWalk". This one too has been ignored by Microsoft at first glance.
Several popular Lenovo consumer models, including IdeaPad, Legion, and more, have been found to be vulnerable to UEFI firmware security bugs. The vulnerabilities can lead to privilege of escalation.
Azure Defender for IoT had five security vulnerabilities that SentinelOne‘s SentinelLabs had discovered and proactively reported to Microsoft. Some of the flaws are rated "Critical" for severity.
Google has released Chrome v99.0.4844.84 to the Stable Channel. The update for the web browser is available for all desktop OSes and includes a security fix for a vulnerability rated 'High'.
An unofficial patch for a Windows LPE security vulnerability under "CVE-2021-34484" is out, one that was supposedly fixed by Microsoft via its Patch Tuesday updates twice, but apparently not.
Intel and ARM are vulnerable to the Spectre-BHB flaw, but AMD is apparently troubled by Spectre v2, which it should have fixed back in 2018. AMD has now issued a new fix for the CVE-2017-5715 bug.
A new CPU exploit based on the infamous Spectre v2 has been discovered. However, when the security patch is applied it can affect performance by up to 36%, that's according to a recent study.
Mozilla has released Firefox v97.0.2. It's an out-of-band security update to patch two "Critical" security flaws that are being exploited in the wild. These 0-Days rely on the 'Use-after-free' bug.
Linux is a lot safer than Windows, macOS, and others because open-source programmers are racing to fix security vulnerabilities in record time, claim security researchers at Google's Project Zero.
Google's Project Zero team has shared some interesting stats regarding its findings for the past couple of years today. Interestingly, it found the most security issues in Microsoft products.
Firmware security research firm Binarly has revealed that it discovered nearly two dozen vulnerabilities in InsydeH2O UEFI used by several vendors like Microsoft, Intel, Dell, HP, and more.
ESET has released updated builds for a whole bunch of its products on Windows. These updated product builds fix a local privilege escalation (LPE) vulnerability that the firm learned about last year.
An LPE security vulnerability under the ID CVE-2021-4034 was found by Linux security researchers at Qualys. The bug has been present for 12+ years and almost every major Linux distro is vulnerable.
A new Local Privilege Escalation bug affecting all prevalent versions of Windows OS has received unofficial patches from 0Patch after Microsoft refused to fix the NTLM authenticating protocol.
Microsoft had discovered a macOS security vulnerability inside the TCC that can allow an attacker to gain control over a Mac's various settings. A patch is already out via the macOS Monterey 12.1.
HP has issued a list of its printers that are vulnerable to a new "Critical" buffer overflow bug that can lead to exploitation. Fortunately, patched firmware for these models has also been released.
AMD has published a long list of security bugs and exploits that its Windows 10 graphics driver was susceptible to. Thankfully for Radeon GPU owners, these exploits have since been patched.
Intel has published an updated security advisory for a couple of new LPE bugs that were discovered. A lot of the newer CPUs, except Alder Lake, are vulnerable too. Firmware patches are rolling out.
_small.jpg)
CrowdStrike details Spyboy Terminator said to kill Microsoft Defender, Avast, and more EDRs
Windows 11 gets widgets for monitoring CPU, GPU, RAM, and more, here is how to enable them
The Windows version of the revamped Microsoft Teams will become the default later in 2023
Microsoft's appeal of the CMA's Activision Blizzard deal rejection could happen in late July
Recommended by 
We're on Mastodon!
We're on Mastodon!