Saturday, July 12, 2025
Latest:

Computer Security Articles

RSS Reader for Computer Security Articles

Month: March 2017

ComputerWorldIndependent
admin

VMware patches critical virtual machine escape flaws

Credit to Author: Lucian Constantin| Date: Thu, 30 Mar 2017 03:53:00 -0700

VMware has released critical security patches for vulnerabilities demonstrated during the recent Pwn2Own hacking contest that could be exploited to escape from the isolation of virtual machines.

The patches fix four vulnerabilities that affect VMware ESXi, VMware Workstation Pro and Player and VMware Fusion.

Two of the vulnerabilities, tracked as CVE-2017-4902 and CVE-2017-4903 in the Common Vulnerabilities and Exposures database, were exploited by a team from Chinese internet security firm Qihoo 360 as part of an attack demonstrated two weeks ago at Pwn2Own.

The team’s exploit chain started with a compromise of Microsoft Edge, moved to the Windows kernel, and then exploited the two flaws to escape from a virtual machine and execute code on the host operating system. The researchers were awarded $105,000 for their feat.

To read this article in full or to leave a comment, please click here

Read More
ComputerWorldIndependent
admin

Trump extends Obama executive order on cyberattacks

Credit to Author: Martyn Williams| Date: Thu, 30 Mar 2017 03:24:00 -0700

President Donald Trump is extending by one year special powers introduced by former President Barack Obama that allow the government to issue sanctions against people and organizations engaged in significant cyberattacks and cybercrime against the U.S.

Executive Order 13694 was introduced on April 1, 2015, and was due to expire on Saturday, but the president sent a letter to Congress on Wednesday evening saying he plans to keep the order active.

“Significant malicious cyber-enabled activities originating from, or directed by persons located, in whole or in substantial part, outside the United States, continue to pose an unusual and extraordinary threat to the national security, foreign policy, and economy of the United States,” Trump wrote in the letter. “Therefore, I have determined that it is necessary to continue the national emergency declared in Executive Order 13694 with respect to significant malicious cyber-enabled activities.”

To read this article in full or to leave a comment, please click here

Read More
QuickHealSecurity
admin

Cybersecurity Quiz – How safe are your kids on the Internet?

Credit to Author: Rajib Singha| Date: Wed, 22 Mar 2017 08:23:33 +0000

As fun and constructive as the Internet can be in the life of children and young people, it carries its drawbacks too. With incidences of cybercrime increasing at an alarming rate, children and teens who are connected to the Internet are seen as soft targets by online scammers, predators, hackers,…

The post Cybersecurity Quiz – How safe are your kids on the Internet? appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More
QuickHealSecurity
admin

Clicking an image could have hacked your WhatsApp account

Credit to Author: Rajib Singha| Date: Thu, 16 Mar 2017 13:12:12 +0000

Users of WhatsApp Web (the browser-based version of the app) were recently targeted with an image-based security threat where simply clicking an image could have hacked their accounts. A security vulnerability was present in WhatsApp Web and it was recently patched by WhatsApp. By exploiting this vulnerability, an attacker could…

The post Clicking an image could have hacked your WhatsApp account appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More
QuickHealSecurity
admin

CVE-2017-5638 – Apache Struts 2 Remote Code Execution Vulnerability

Credit to Author: Pradeep Kulkarni| Date: Tue, 14 Mar 2017 11:01:23 +0000

The well-known open source web application framework Apache Struts 2 is being actively exploited in the wild allowing hackers to launch a remote code execution attack.  To address this issue, Apache has issued a security advisory and CVE-2017-5638 has been assigned to it. The zero-day bug has been rated with…

The post CVE-2017-5638 – Apache Struts 2 Remote Code Execution Vulnerability appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More
QuickHealSecurity
admin

Dear Women, Define your Online Identity Securely

Credit to Author: Suhita Mazumdar| Date: Fri, 10 Mar 2017 09:46:23 +0000

Amazing women are everywhere. They have defined our past and are making our present better so that we can look forward to a better future. Women have always been more vocal, expressive and willing to share than men. And social networking has become one the most powerful platforms for them…

The post Dear Women, Define your Online Identity Securely appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More
QuickHealSecurity
admin

Cyber Swachhta Kendra – A Digital India Initiative for a Secure Cyber Ecosystem

Credit to Author: Sanjay Katkar| Date: Mon, 06 Mar 2017 12:25:34 +0000

The Government of India recently launched an ambitious project called Cyber Swachhta Kendra (CSK) – a Botnet Cleaning and Malware Analysis Center. Developed under the Ministry of Electronics and Information Technology (MeitY), this center will be operated by the Indian Computer Emergency Response Team (CERT-In). Developed as an essential part…

The post Cyber Swachhta Kendra – A Digital India Initiative for a Secure Cyber Ecosystem appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More
QuickHealSecurity
admin

Quick Heal Total Security for Android (v2.01) gives 100% malware detection – Latest AV-Test results

Credit to Author: Rajib Singha| Date: Tue, 28 Feb 2017 10:26:41 +0000

The AV-Test institute is an independent organization that evaluates and rates antivirus software solutions, benchmarking them against various criteria. These evaluations are run for Windows and Android operating systems. In the latest evaluation for mobile security solutions run by the institute (Jan/2017), Quick Heal Total Security App has scored 100%…

The post Quick Heal Total Security for Android (v2.01) gives 100% malware detection – Latest AV-Test results appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More