Security News

TrickBot Switches to a New Windows 10 UAC Bypass to Evade Detection
2020-02-03 12:15

The TrickBot trojan has evolved again to bolster its ability to elude detection, this time adding a feature that can bypass Windows 10 User Account Control to deliver malware across multiple workstations and endpoints on a network, researchers have discovered. Researchers at Morphisec Labs team said they discovered code last March that uses the Windows 10 WSReset UAC Bypass to circumvent user account control and deliver malware in recent samples of TrickBot, according to a report released last week.

How a researcher exploited the Windows 10 bug patched by Microsoft
2020-01-16 19:23

Saleem Rashid shows that a patch for a security bug in Windows 10 and Windows Server 2016/2019 could be exploited in the real world to spoof security certificates on machines without the patch. This week Microsoft was forced to quickly patch a security bug in Windows 10 and Windows Server 2016/2019 that could have allowed attackers to spoof legitimate security certificates as a way of gaining control of an infected PC. Microsoft was prompted to act after the NSA discovered and privately reported the bug, which was evidence of a serious flaw in the way the latest versions of Windows and Windows Server check the validity of certain security certificates.

Windows 10: Security researcher 'rickrolls' himself to exploit bug patched by Microsoft
2020-01-16 19:23

Saleem Rashid shows that a patch for a security bug in Windows 10 and Windows Server 2016/2019 could be exploited in the real world to spoof security certificates on machines without the patch. This week Microsoft was forced to quickly patch a security bug in Windows 10 and Windows Server 2016/2019 that could have allowed attackers to spoof legitimate security certificates as a way of gaining control of an infected PC. Microsoft was prompted to act after the NSA discovered and privately reported the bug, which was evidence of a serious flaw in the way the latest versions of Windows and Windows Server check the validity of certain security certificates.

Warning: Quickly Patch A New Critical Windows 10 Flaw Discovered by the NSA
2020-01-14 10:48

What's so special about the latest Patch Tuesday is that one of the updates fixes a serious flaw in the core cryptographic component of widely used Windows 10, Server 2016 and 2019 editions that was discovered and reported to the company by the National Security Agency of the United States. What's more interesting is that this is the first security flaw in Windows OS that the NSA reported responsibly to Microsoft, unlike the Eternalblue SMB flaw that the agency kept secret for at least five years and then was leaked to the public by a mysterious group, which caused WannaCry menace in 2017.

How to set up facial recognition to sign into Windows 10
2020-01-07 18:54

Only certain cameras support Windows Hello facial recognition, and you have to set up the feature for it to scan and recognize your face. On the plus side, if you're able to set up facial recognition, you can use it for more than just signing in to Windows 10.

Windows 10 Mobile receives its last security patches
2019-12-11 11:24

If you’re one of the tiny hardcore still using Windows 10 Mobile, 10 December 2019 is probably a day you’ve been dreading for nearly a year.

DNS-over-HTTPS is coming to Windows 10
2019-11-21 15:22

Microsoft will soon add the ability to use DNS-over-HTTPS and DNS-over-TLS into its networking client.

US Air Force inks deal with Raytheon on Windows 10 (and other) support for ARSE
2019-11-01 10:08

Two countries separated by a common language The US Air Force (USAF) has declared it is awarding a contract to Raytheon thanks to its pressing need for "full ARSE compatibility", including Windows...

Most IT pros still haven’t migrated all their users to Windows 10
2019-10-31 05:00

59% of IT professionals report that they still haven’t migrated all their users to Windows 10, despite the imminent end of regular support for Windows 7 on January 14, 2020, according to Ivanti...

Dixons hits back at McAfee's £30m antivirus sueball: Your AV didn't work on Windows 10S
2019-08-28 09:00

And that's why we flirted with your nemesis Symantec, Brit retailer claims Brit retailer Dixons has lashed back at McAfee's £30m High Court broadside, saying it was entitled to promote rival...