Security Software news and updates


keylogger hp

Your HP device might have a keylogger installed

Fresh from Switzerland comes a report from security firm modzero AG about a keylogger in audio drivers of certain HP devices. The keylogger is built-into the driver, records all keystrokes made by […]

intel vulnerability

Detect and Mitigate Intel AMT vulnerability

A recently disclosed vulnerability in Intel products using Intel Active Management Technology, Intel Small Business Technology, and Intel Standard Manageability gives attackers remote access to the manageability features supported by these products. […]

portrait display

Portrait Display service makes millions of HP, Fujitsu and Philips notebooks vulnerable

Security researchers at Sec Consult discovered a vulnerability in Portrait Display, a software used by OEMs such as HP and Fujitsu on millions of notebooks. Portrait Display SDK Service is used by […]

apple phishing punycode

Punycode Phishing Attack fools even die-hard Internet veterans

There are only a handful of rules that you need to know to counter any phishing attack that you may be exposed to on the Internet, right? Check the web address and […]

are you identifiable

Are you identifiable by extensions, logins and your browser?

Are you identifiable is a new web service that answers whether Internet sites may identify you based on your extensions, logins, and web browser. Online privacy is a hot topic, and making […]

avira prime

Avira Prime: first look at Avira's new premium service

Avira Prime is a new subscription-based service by security company Avira that can best be described as a cross-platform all-in-one service. First, the basics: Avira Prime is available for 9.95 € per […]

lastpass 4.1.42 exploit

Full Last Pass 4.1.42 exploit discovered

Tavis Ormandy, a prolific member of Google's Project Zero initiative, revealed that he discovered a new security issue in LastPass 4.1.42 (and maybe earlier). Ormandy revealed that he discovered an exploit, but […]

pwn2own 2017

Pwn2Own 2017: Windows, Ubuntu, Edge, Safari, Firefox exploited

The tenth anniversary of the Pwn2Own gathering of hackers, Pwn2Own 2017, saw eleven teams attempt to exploit products across four categories. The products that teams were allowed to target this year included […]

android password managers

Security issues found in nine password managers for Android (LastPass, Dashlane..)

Security researchers of the Fraunhofer Institute found severe security issues in nine password managers for Android that they analyzed as part of their research. Password managers are a popular option when it […]

cloudflare security issue cloudbleed

CloudBleed: check if you visited sites affected by CloudFlare's security issue

CloudBleed is the unofficial name for a security issue discovered on February 17th, 2017 that affected CloudFlare's reverse proxies. CloudFlare is a large provider that is used by more than 5.5 million […]

edge ie vulnerability

Google discloses Edge and IE vulnerability

Google disclosed a security vulnerability in Microsoft Edge and Internet Explorer yesterday that Microsoft failed to patch up until now. This is the second vulnerability that Google disclosed this mean. Last week, […]

gdi32 dll vulnerability

Google discloses another unpatched Windows vulnerability

Google Project Zero member Mateusz Jurczyk disclosed a gdi32.dll vulnerability in the Windows operating system to Microsoft on November 16, 2016. The report itself is quite technical and it would go too […]

cross browser fingerprinting

Researchers develop cross-browser fingerprinting technique

Researchers have developed a cross-browser fingerprinting technique that uses operating system and hardware level features. Fingerprinting has been limited for the most part to individual web browsers in the past. If a […]

smb zero-day windows

SMB Zero-Day affects Windows 8, 10 and Server

The United States Computer Emergency Readiness Team (US-CERT) published a vulnerability note yesterday about a new zero-day vulnerability affecting Microsoft Windows 8, 10 and Server editions. It reads: Microsoft Windows contains a […]

malwarebytes 3.0.6

Malwarebytes 3.0.6 with stability and performance improvements

Malwarebytes 3.0.6 is the latest version of the popular security program for Windows that is available as a free and premium version. The company, also called Malwarebytes, released version 3.0 of the […]

rel noopener browser issue

Web Security: add rel=noopener to external links

Don't touch my tabs! (rel=noopener) is a Firefox add-on that adds rel="noopener" to external links on sites open in Firefox automatically. Noopener_by_default is a userscript that does the same for links. Did […]

gmail phishing

Beware: new sophisticated Gmail phishing attacks

Researchers have discovered a new phishing attack that is currently underway that is targeting Google Gmail accounts in a sophisticated way. What's interesting about this specific attack is that it uses a […]

whatsapp security notifications

WhatsApp Security: make this change right now!

Security researchers found a backdoor in the popular messaging application WhatsApp recently that could allow WhatsApp to intercept and read user messages. Facebook, the owner of WhatsApp, claims that it is impossible […]