.
Annunci online

News, Scientific Discoveries, Anomalies, Thoughts, inside the W.W.W.


Diario


11 novembre 2017

Intel Management Engine Vulnerability Exposes Millions of PCs to Undetectable Attacks, Claims Security Firm


... The IME is completely transparent to PC users and their operating systems, operating on a much lower level. Users will have no way to detect that the IME has been compromised. Since the Skylake generation, Intel has been using the open-source Minix embedded operating system for IME functions, a decision that is partly responsible for the existence of this security hole... LEGGI

CPU Intel Skylake e successive vulnerabili ad un exploit via USB

... Non è possibile ovviamente sbarazzarsi di IME nelle CPU Intel, tuttavia è interessante notare come ci sia una nicchia di mercato che propone i loro sistemi con la feature disabilitata via firmware. Il CEO di Purism Todd Weaver ha commentato così le novità rivelate in queste ore: "L'Intel ME è da tempo teorizzata come una delle più pericolose minacce, ma questa non è più teoria. Disporre dell'accesso di ogni macchina Intel sull'hardware e a livello più basso di qualsiasi software significa che ogni aggressore o criminale può ottenere controllo su tutto"... LEGGI


20 settembre 2012

CyberWar: Microsoft releases fix for Internet Explorer security hole, full patch coming Friday (UPDATE)

2012 - PHOTO Internet

Microsoft has issued a simple Fix It tool to fix the zero day security vulnerability in Internet Explorer that has been causing headlines this week... MORE

Advisory Microsoft sulla sicurezza (2757760) - MORE

Over 9 million PCs infected - ZeroAccess botnet uncovered -  MORE

How to stay protected against Internet Explorer’s 0-day vulnerability - MORE

Microsoft Security Advisory: Vulnerability in Internet Explorer could allow remote code execution - MORE

Download Microsoft Fix it 50939 (Enable)http://go.microsoft.com/?linkid=9817706

Download Microsoft Fix it 50939 (Disable): http://go.microsoft.com/?linkid=9817705

F-Secure: The United States of ZeroAccess - MORE

McAfee Labs Report Explains Dangers of Rootkits Bypassing Windows Kernel Security - MORE


28 gennaio 2011

Internet: Microsoft warns of new unpatched vulnerability in all supported versions of Windows

Microsoft said on Friday that it is investigating reports of a new 0-day vulnerability across all supported versions of Windows. The vulnerability affects Windows XP, Vista, Windows 7 and all supported Windows Server releases. The vulnerability exists due to the way MHTML interprets MIME-formatted requests for content blocks within a document. It is possible for this vulnerability to allow an attacker to run script in the wrong security context... MORE

Windows: Scoperta vulnerabilità critica nel sistema operativo che potrebbe compromettere la vostra sicurezza - MORE


7 gennaio 2011

Internet - Windows: Zero-day backdoors to be left unplugged on Patch Tuesday

MSRC WebSite: http://blogs.technet.com/b/msrc/

...The critical vulnerability affects all supported versions of Windows (including Windows 7 and 2008R2) while the less serious fix is particular to a flaw that's restricted to Windows Vista. The light patch batch omits fixes for two recently discovered zero-day vulnerabilities in Windows, separate bugs in Windows Graphics Rendering Engine and an earlier Internet Explorer flaw... MORE

Gennaio 2011: Due patch, ma due falle rimarranno aperte - MORE 

Microsoft to patch three vulnerabilities in Windows - MORE

VIRUS ALERT: Worm Planted in Fake Microsoft Update - MORE


24 dicembre 2010

Internet - F-Secure: Merry Christmas and Happy Security Advisory 2488013

There's an unpatched Internet Explorer 6, 7, and 8 vulnerability in the wild. Drive-by exploitation could allow remote code execution. Reports are that Metasploit already has a module available. There's a concise write-up at SANS Diary, and Microsoft's Security Response Center has more extensive details... MORE

Microsoft warns on IE browser bug - MORE


Tag inseriti dall'utente. Cliccando su uno dei tag, ti verranno proposti tutti i post del blog contenenti il tag. f-secure internet 2010 patch ms ie vulnerability sans

permalink | inviato da giorgius il 24/12/2010 alle 13:51 | Leggi i commenti e commenta questo postcommenti (0) | Versione per la stampa


15 luglio 2010

Browser - Firefox: "CoolPreviews 3.0.1 vulnerability"

Mozilla recently discovered a security escalation vulnerability in the 3.0.1 version of the popular CoolPreviews add-on. The vulnerability can be exploited with a specially crafted link, which forces the add-on to execute remote JavaScript code if the user hovers the cursor over the link. More information is available at the Mozilla Add-ons blog... MORE

Add-on security vulnerability announcement - MORE


Tag inseriti dall'utente. Cliccando su uno dei tag, ti verranno proposti tutti i post del blog contenenti il tag. firefox 2010 browser advisory vulnerability add-on

permalink | inviato da giorgius il 15/7/2010 alle 11:44 | Leggi i commenti e commenta questo postcommenti (0) | Versione per la stampa
sfoglia     giugno        dicembre
 
 




Blog Letto 1 volte

Feed RSS di questo blog Reader
Feed ATOM di questo blog Atom

COSE VARIE

Indice ultime cose
Il mio profilo

RUBRICHE

Diario
Antivirus
Agenzie di Stampa
Science
Hardware
Bli Blo Bla
Software
OVNI - "Sonde luminose"
AeroSpace
Housing Bubble e non solo

VAI A VEDERE

RealTime Seismicity
Meteogiornale
INGV
Meteo Fulmini LIVE
I.E.S.N. Seismic LIVE
Osservatorio Meteo e Sismico
Estofex
Hurricane Zone
Current Solar Data
SpaceWeather
Hardware Upgrade
OOKLA ADSL SpeedTest
02WEB
RMC 80 Web Radio
GiorgiusLIVE Facebook
GiorgiusLIVE Twitter



Locations of visitors to this page

Powered by FeedBurner

Add to Google Reader or Homepage

Subscribe in Bloglines

Add to netvibes

Free Internet Security - WOT Web of Trust

[Valid RSS]

CERCA