AgileBits, makers of the 1Password password manager, introduced a new Travel Mode feature in recent versions of the program for paying customers. This new mode hides password vaults when you enable it, so that they are not revealed when someone opens the passwords in the application. Traveling internationally with electronic devices can be an unpleasant […]
Computer security has always been important, but the rise of the Internet and the global Internet community have made it more pressing than ever. New threats have emerged with the Internet, including phishing attacks that spread via email, computer worms that replicate over the Internet, a new bread of trojans that take over a computer to include it in a bot network that is used for malicious activities, and spam and viruses are all threats that Internet users encounter these days.
We cover security updates when they are released for major software including Microsoft Windows, plugins like Java or Adobe Flash, and web browsers like Google Chrome or Firefox. In addition, we are also reporting about services, online and offline, that help you protect your systems against security threats, and post tutorials that explain how to recover a system when it has been successfully attacked.
Fresh from Switzerland comes a report from security firm modzero AG about a keylogger in audio drivers of certain HP devices. The keylogger is built-into the driver, records all keystrokes made by users of the system, and saves them all to a logfile MicTray.log in the C:\Users\Public\ of the computer system. Note that the log […]
A recently disclosed vulnerability in Intel products using Intel Active Management Technology, Intel Small Business Technology, and Intel Standard Manageability gives attackers remote access to the manageability features supported by these products. First the good news: the vulnerability does not affect (most) consumer PCs with Intel consumer firmware. These technologies have been created by Intel […]
Security researchers at Sec Consult discovered a vulnerability in Portrait Display, a software used by OEMs such as HP and Fujitsu on millions of notebooks. Portrait Display SDK Service is used by various OEMs such as HP or Fujitsu as an on screen display that provides notebook users with options to tune displays. The core […]
There are only a handful of rules that you need to know to counter any phishing attack that you may be exposed to on the Internet, right? Check the web address and make sure it is the right one. Also, make sure you don't follow any links on pages or in messages that you don't […]
Are you identifiable is a new web service that answers whether Internet sites may identify you based on your extensions, logins, and web browser. Online privacy is a hot topic, and making sure that you you are not tracked or traced online may soon require a master's degree in privacy. New technologies, the rise of […]
Avira Prime is a new subscription-based service by security company Avira that can best be described as a cross-platform all-in-one service. First, the basics: Avira Prime is available for 9.95 € per month for up to five devices, or 12.95 € per month for up to 25 devices, or yearly payments of 99.95 € / […]
Security company Malwarebytes has released another beta version for its flagship product Malwarebytes 3 to fix long-standing issues in the program. Malwarebytes 3, a new product born out of the ashes of Malwarebytes Anti-Malware, Anti-Exploit, and Anti-Ransomware, has been plagued by bugs ever since its release. As a Malwarebytes user myself, I have been plagued […]
Tavis Ormandy, a prolific member of Google's Project Zero initiative, revealed that he discovered a new security issue in LastPass 4.1.42 (and maybe earlier). Ormandy revealed that he discovered an exploit, but did not reveal it. Project Zero discoveries are reported to the companies who produce the affected products. The companies have 90 days to […]
The tenth anniversary of the Pwn2Own gathering of hackers, Pwn2Own 2017, saw eleven teams attempt to exploit products across four categories. The products that teams were allowed to target this year included operating systems and web browsers, but also the new product categories Enterprise applications and server-side. Programs like Adobe Reader, and Apache Web Server, […]
Security researchers of the Fraunhofer Institute found severe security issues in nine password managers for Android that they analyzed as part of their research. Password managers are a popular option when it comes to storing authentication information. All promise secure storage either locally or remotely, and some may add other features to the mix such […]
CloudBleed is the unofficial name for a security issue discovered on February 17th, 2017 that affected CloudFlare's reverse proxies. CloudFlare is a large provider that is used by more than 5.5 million Internet properties according to the company's website. It offers CDN and DDOS protection, optimization technologies for websites, dedicated SSL and a lot more. […]
Google disclosed a security vulnerability in Microsoft Edge and Internet Explorer yesterday that Microsoft failed to patch up until now. This is the second vulnerability that Google disclosed this mean. Last week, the company disclosed a Windows vulnerability that affected the gdi32.dll dynamic link library in Windows. The new vulnerability that Google disclosed yesterday affects […]
Google Project Zero member Mateusz Jurczyk disclosed a gdi32.dll vulnerability in the Windows operating system to Microsoft on November 16, 2016. The report itself is quite technical and it would go too far to go into details here on the site. The following describes the turn of events however. Jurczyk disclosed issues with gdi32.dll to […]