Security News

New Moriya rootkit used in the wild to backdoor Windows systems
2021-05-06 14:31

An unknown threat actor used a new stealthy rootkit to backdoor targeted Windows systems what looks like an ongoing espionage campaign dubbed TunnelSnake going back to at least 2018. Rootkits are malicious tools designed to evade detection by burying deep into the operating system and used by attackers to fully take over infected systems while avoiding detection.

Chrome on Windows turns on Intel, AMD chip-level defenses against malicious websites
2021-05-06 07:23

Version 90 of Google's Chrome browser includes a bit of extra security for users of recent versions of Windows and the latest x86 processors, in the form of hardware-enforced stack protection. This basically means that, if your PC supports it, it's a bit harder for malicious websites to exploit bugs in Chrome to hijack your computer.

Windows Defender bug fills Windows 10 boot drive with thousands of files
2021-05-05 15:29

A Windows Defender bug creates thousands of small files that waste gigabytes of storage space on Windows 10 hard drives. The bug started with Windows Defender antivirus engine 1.1.18100.

Chrome for Windows Gets Hardware-enforced Exploitation Protection
2021-05-05 13:19

Starting in version 90, Chrome for Windows improves resilience against vulnerability exploitation by adopting Hardware-enforced Stack Protection. Together with existing protection measures, the Stack Protection should mitigate a variety of exploitation techniques, but could affect stability if it is not compatible with software that loads itself into Chrome.

Google Chrome adopts Windows 10 exploit protection feature
2021-05-04 19:04

Google Chrome now hinders attackers' efforts to exploit security bugs on systems with Intel 11th Gen or AMD Zen 3 CPUs, running Windows 10 2004 or later. This is possible after the adoption of Intel's Control-flow Enforcement Technology, supported on Windows 10 computers through an implementation known as Hardware-enforced Stack Protection which adds enhanced exploit protection to all compatible devices.

New Windows 'Pingback' malware uses ICMP for covert communication
2021-05-04 13:00

Dubbed "Pingback," this malware targets Microsoft Windows 64-bit systems, and uses DLL Hijacking to gain persistence. Abuses real Windows service to load malicious DLL. Today, Trustwave senior architect Lloyd Macrohon and principal security researcher Rodel Mendrez, have released their findings on a novel Windows malware that exists as a 64-bit DLL. Of note is the malware sample's choice of the communication protocol being ICMP, which is also used by the popular ping command and the Windows traceroute utility.

How to set up camera privacy settings in Windows 10
2021-05-03 18:04

Before you can use a camera app in Windows 10 you have to allow access to the camera itself. This how-to tutorial shows you how to access camera settings in Windows 10 and how to grant permission to access a camera to specific apps.

Microsoft reveals final plan to remove Flash Player in Windows 10
2021-05-03 14:10

Microsoft quietly revealed its plans to remove the Adobe Flash plugin from Windows 10, with mandatory removal starting in July 2021. In a quiet update to their end of support for Adobe Flash blog post, Microsoft has outlined their further plans on how they will begin distributing the Windows 10 KB4577586 update.

Closer look at the new Windows 10 features tested in preview builds
2021-05-02 20:47

While the next update is all about improvements, preview builds and reports have suggested that Windows 10 version 21H2 is going to be a big release with something new for everyone. Windows 10 Sun Valley will update File Explorer to add a new Extract All option for OneDrive files.

How to stop Windows 10 Defender from uploading files to Microsoft
2021-05-02 13:44

Like other antivirus programs, Microsoft Defender will upload suspicious files to Microsoft to determine if they are malicious. "When Microsoft Defender scans your device, by default, it will use the"Automatic sample submission' feature to upload files to Microsoft's servers when a file is suspected to be malicious.