Bluetooth flaw allows device impersonation
A Swiss research institute has uncovered yet another vulnerability in Bluetooth protocol that leaves millions of devices open to attack. Last year the same team of researchers revealed what they called a “novel and powerful” Key Negotiation of Bluetooth (KNOB) attack that impersonated the receiver of sensitive files and transmitted encrypted commands to unlock a […]
28 Antivirus products affected by symlink race bugs
According to a report published this week by security researchers from RACK911, “symlink race” vulnerabilities were found in 28 of today’s most popular antivirus software. RACK911 Labs reports how they came up with a simple method of using directory junctions (Windows) and symlinks (macOS & Linux) to exploit the most popular antivirus programs. A symlink […]
Zero-Day exploit allows file overwriting on Windows
A new zero-day vulnerability has been disclosed for the Windows operative system. This is the fourth exploit disclosed in just as many months by the security researcher under the alias of SandboxEscaper. She first announced on December 25 that on New Year she would release publicly the PoC for a new bug in Windows, however […]
Security Flaw discovered on Electron-Based Apps
Electron (formerly Atom Shell) is an open-source framework developed and maintained by GitHub. Electron allows building cross-platform desktop applications with web technologies such as HTML, CSS and JavaScript, by combining the Chromium rendering engine and Node.js into a single runtime. Electron is widely used, with Apps built on top of it including Microsoft Visual Studio […]
Google forces Android security patches roll-out
During this week’s Google I/O 2018 event at the Shoreline Amphitheatre, an outdoor venue in Mountain View, California, the company announced a great number of changes and new features, like the release of the Android P Beta Program, new Google Assistant features, changes in Gmail and many others. Security is a trending topic, and Google, […]
CentOS 7 – Install And Configure ClamAV
Clam AntiVirus (commonly ClamAV) is a free, cross-platform and open-source antivirus software toolkit able to detect many types of malicious software, including viruses. One of its main uses is on mail servers as a server-side email virus scanner. Despite the myth, Linux operative systems do get troubled with Virus. They can take down your website, […]