Blog

Windows 10 security: Google exposes how malicious sites can exploit Microsoft Edge

Microsoft misses Google's 90-day deadline, so Google has published details of an exploit mitigation bypass.       By Liam Tung | February 19, 2018        Google's Project Zero team has published details of an unfixed bypass for an important exploit-mitigation technique in Edge. The mitigation, Arbitrary Code Guard (ACG), arrived in the Windows 10 Creators…
Read more

Android malware: Millions fall victim to drive-by cryptocurrency miner

Researchers say that at least 60 million visits have been forcibly made to malicious Monero sites in what represents the first large-scale crypto-currency campaign targeting mobile.     By Danny Palmer | February 16, 2018 Smartphones have much power to mine cryptocurrency - but their lack of security makes them easy targets for attackers. Image: iStock    …
Read more

Meltdown-Spectre flaws: We’ve found new attack variants, say researchers

Intel and AMD may need to revisit their microcode fixes for Meltdown and Spectre.     By Liam Tung | February 16, 2018 Researchers have developed a tool to uncover new ways of attacking the Meltdown and Spectre CPU side-channel flaws, which may force chip makers like Intel to re-examine already difficult hardware mitigation. The tool allowed the…
Read more

Google image search: Here’s why the View Image button just vanished

Copyright owners claim a victory over Google's image search.     By Liam Tung | February 16, 2018       Google has removed the 'View Image' button in image search results, eliminating a simple way for users to see an image in isolation from the page it was sourced from. The seemingly small change has implications for…
Read more

Coinbase responds to user fury over rampant overcharging

The digital currency exchange says it will refund the extortionate charges made on some user accounts.     By Charlie OsborneFebruary 16, 2018 Coinbase has responded to claims that customers are experiencing heavy charges and unauthorized withdrawals from their accounts by saying the company has reached the source of the problem.         As…
Read more

Use Microsoft Outlook? Update now to fix these two dangerous bugs

Microsoft's February patches include its mitigation's for Meltdown-Spectre CPU attacks in its Security Only update.     By Liam Tung | February 14, 2018       Microsoft has released patches for 50 bugs affecting its products, including two dangerous Outlook bugs. The February updates address security flaws in Internet Explorer, Edge, Microsoft's ChakraCore JavaScript engine, Windows, and…
Read more

Fitbit bug bounty program now pays for vulnerability reports

Bug hunters can expect to be paid for their efforts now the Fitbit public and private programs have merged.        By Charlie OsborneFebruary 14, 2018  Max Pixel       Fitbit has expanded its public bug bounty program to offer financial incentives for vulnerability discoveries. On Wednesday, Bugcrowd, which hosts the Fitbit program, announced the…
Read more

LoopX pulls exit scam, walks away with $4.5m in investor cryptocurrency

The startup's last ICO was the finale of a scammer's performance.     By Charlie Osborne February 13, 2018  File Photo       LoopX has pulled an exit scam after launching a series of Initial Coin Offerings (ICOs) which earned the startup roughly $4.5 million. The cryptocurrency startup promised to give traders consistent, high returns for…
Read more