Security News > 2020 > March

It's a problem that many believe explains the abrupt decision by Google to delay the release of Chrome 81, the stable version of which was scheduled to start appearing on users' computers on 17 March. Due to adjusted work schedules at this time, we are pausing upcoming Chrome and Chrome OS releases.

Welcome to Hong Kong, traveler, and to the mandatory, Disney MagicBand-esque tracking wristband we're about to slap onto your potentially infectious arm. As the area undergoes a COVID-19 resurgence, mostly brought in by travelers coming from European, US and Asian countries, it's now enforcing the quarantine on all incoming travelers, with the wristbands helping to ensure that they adhere to movement restrictions.

Cisco has fixed five security vulnerabilities in its Software-Defined WAN Solution, two of which could allow an authenticated, local attacker to either gain root privileges on the underlying operating system or to inject arbitrary commands that are executed with root privileges. While there is no indication that these flaw are being actively exploited, no workarounds addressing the vulnerabilities exist so upgrading to the Cisco SD-WAN Solution software release 19.2.2.

Firefox has decided it's time to burn the browser's FTP connections. Platform list, developer Michal Novotny announced "We plan to remove FTP protocol implementation from our code."

Having a sizable amount of employees suddenly working remotely can be a major change for organizations and presents numerous problems with regard to cybersecurity. Remote working can effectively widen an organization's attack surface.

HYAS Insight lets analysts connect specific attack instances and campaigns to billions of historical and real-time indicators of compromise faster than ever before, bringing invaluable new intelligence and visibility to security efforts. Contrast Security announced Route Intelligence, a major new capability for application security.

Crypto systems, in contrast, are often perceived to already be hardened and less vulnerable than software applications. You'll also want to evaluate exposure to attack, the sensitivity of information that is being protected, and whether there's support for crypto agility to determine if the system will need to be replaced by something more agile.

On the second day of the Pwn2Own 2020 hacking competition, participants earned a total of $90,000 for exploits targeting Oracle VirtualBox, Adobe Reader and Windows. Amat Cama and Richard Zhu of team Fluoroacetate earned $50,000 for demonstrating that they could hijack a system by exploiting use-after-free vulnerabilities in Adobe Reader and the Windows kernel.

Researchers at the University of Washington wanted to know how people investigated potentially suspicious posts on their own feeds. Previous research on how people interact with misinformation asked participants to examine content from a researcher-created account, not from someone they chose to follow.

The potential for COVID-19 to lead to a global economic downturn is the top concern for finance leaders in the US and Mexico, according to PwC. However, 90% of finance leaders say their business would return to normal in less than 3 months if COVID-19 were to end immediately. Key findings All finance leaders say their business is experiencing some impact as a result of coronavirus.