Security News

Two new versions of OpenZFS fix long-hidden corruption bug
2023-12-04 16:15

The bug that was very occasionally corrupting data on file copies in OpenZFS 2.2.0 has been identified and fixed, and there's a fix for the previous OpenZFS release too. The OpenZFS development team have put out not one but two new releases of the open-source cross-platform filesystem for Linux and FreeBSD. Version 2.2.2 fixes the problem that showed up in the latest version, which is included in FreeBSD 14 as well as several Linux distros, including Ubuntu 23.10.

Tencent fired 100 people for corruption during 2022
2023-01-17 05:29

Chinese web and gaming giant Tencent has admitted it fired more than 100 people in 2022 for various forms of corruption - some so serious it reported them to local police. Other employees embezzled corporate funds, arranged sham contracts, or solicited goods for personal use from Tencent suppliers.

OpenSSL to Release Security Patch for Remote Memory Corruption Vulnerability
2022-06-28 02:16

The latest version of the OpenSSL library has been discovered as susceptible to a remote memory-corruption vulnerability on select systems. OpenSSL 1.1.1 as well as OpenSSL forks BoringSSL and LibreSSL are not affected.

Max Schrems hits Irish Data Protection Commissioner with corruption complaint
2021-11-24 15:05

Data privacy campaign group noyb, founded by Austrian lawyer Max Schrems, has filed a complaint with the Austrian Office for the Prosecution of Corruption for a potential violation of Austrian criminal laws by the Irish Data Protection Commission. The statement goes on to claim the DPC "Engaged in procedural blackmail", justifying noyb's report of the incident to the Austrian Office for the Prosecution of Corruption.

Microsoft fixes Windows 10 drive corruption bug — what you need to know
2021-02-27 15:34

Microsoft has fixed a Windows 10 bug that could cause NTFS volumes to become corrupted by merely accessing a particular path or viewing a specially crafted file. Windows then prompts the user to reboot the computer and run chkdsk to fix the corruption.

Mozilla fixes Windows 10 NTFS corruption bug in Firefox
2021-02-06 20:07

Mozilla has released Firefox 85.0.1 and includes a fix that prevents a Windows 10 NTFS corruption bug from being triggered from the browser. Last month, BleepingComputer reported that a bug in Windows 10 and Windows XP allows non-privileged users to mark an NTFS volume as dirty.

Windows 10 NTFS corruption bug gets unofficial temporary fix
2021-01-25 20:14

Developers have released an unofficial fix for a Windows bug that could lead to the corruption of an NTFS volume by merely viewing a specially crafted file. Earlier this month, BleepingComputer reported that a Windows 10 bug was discovered by security researcher Jonas Lykkegaard that allows non-privileged users to mark an NTFS volume as dirty.

I'll give you my passwords if you investigate police corruption, accused missile systems leaker told cops
2020-11-03 10:15

A former BAE Systems engineer accused of failing to hand over his device passwords to Merseyside Police vowed not to give them up until a watchdog investigated his allegations that police workers had perverted the course of justice, the Old Bailey heard. Finch is accused, as previously reported, of failing to hand over his passwords to police on demand - a crime in the UK - and of revealing secrets about a UK missile system to various foreign countries and other individuals, contrary to the Official Secrets Act.

Microsoft Adds New Data Corruption Preventions to Windows
2020-07-09 15:30

Microsoft this week announced Kernel Data Protection, new technology that aims to protect the Windows kernel and drivers from data corruption attacks. KDP builds upon the technology included by default in Secured-core PCs and adds another layer of protection for configuration data.

Researcher Finds Memory Corruption Vulnerabilities in Several Adobe Products
2020-05-20 08:55

Adobe informed customers on Tuesday that it has patched memory corruption vulnerabilities, including one that allows arbitrary code execution, in several of its products. All of the security flaws were reported to Adobe by researcher Mat Powell of Trend Micro's Zero Day Initiative.