exploit

Fri
05
Jan
Dennis Faas's picture

Spectre and Meltdown Exploits - What You Need to Know

Infopackets Reader Steve P. writes: " Dear Dennis, There has been a whirlwind of news on the Internet regarding the 'Spectre' and 'Meltdown' exploits that affect all microprocessors (CPUs) from 1995 and on. I am afraid my computer is at risk but I ... don't understand all the tecno-talk. Should I be worried? " My response: The short answer is: yes and no, mostly no (once patches are released). At the end of this article I'll offer advice on what you can do to stay protected. What does the Spectre and Meltdown Exploit Mean? I have been following the news for the last few days and here is what I ... (view more)

Fri
24
Nov
John Lister's picture

Windows Bugs Could Be Much More Serious

A key security feature in Windows doesn't work as planned. It's not a vulnerability in itself, but means that hackers who find bugs in software are much more likely to be able to do damage. The problem is with Address Space Layout Randomization ... (ASLR). It deals with the way a computer organizes different programs in memory. As an analogy, it's like organizing vehicles of different sizes and makes in a parking lot. Most operating systems support ASLR, which means that when a program starts up and needs to use the computer's memory, it's assigned a random location. In the analogy, think of cars ... (view more)

Fri
17
Nov
Dennis Faas's picture

How to Fix: WPA2 Vulnerability using DD-WRT Firmware

Infopackets Reader Paul E. writes: " Dear Dennis, I read with interest John Lister's article on the WPA2 exploit (KRACKs) , which explains how hackers can break into any WiFi network. I have 4 TPLink routers in my home that I use as 'hot spots' in ... various locations. As per your suggestion, I have visited TPLink's website for firmware updates for my routers, but there are none available. I am worried that someone is going to break into my network and steal my financial information. What can I do? " My response: I own a few TP Link routers as well and what I've done is flashed the routers using ... (view more)

Tue
05
Sep
John Lister's picture

Pacemakers 'Recalled' Amid Hacking Concerns

Around 465,000 pacemakers have been 'recalled' over hacking fears. However, the St Jude Medical brand devices will be patched with a software update rather than removed and replaced. The pacemakers are radio controlled to allow doctors to alter the ... specific rhythm they aim for when regulating a heart beat. This radio control means doctors can adjust to the patients changing needs without the need to remove the pacemaker for alterations. That's important as the surgery for such a removal is inherently risky. No Signs Of Hack Attacks While the precise details haven't been revealed for obvious ... (view more)

Wed
14
Jun
John Lister's picture

Patch Your PC: Yet Another Massive Exploit Discovered

Microsoft has issued three updates to fix flaws in older, unsupported versions of Windows. It's an unusual move that follows the discovery that both the National Security Agency (NSA) and outside hackers are exploiting the flaws , similar to the one ... that allowed the WannaCry Ransomware worm to spread just a few weeks ago. The updates cover both Windows and Windows Server editions going right back to XP . They'll be issued through the usual automated updates, which means people on Windows 8.1 and later shouldn't need to do anything. Those on earlier systems may need to manually ... (view more)

Wed
30
Mar
John Lister's picture

Ransomware Takes Nasty New Twist

The FBI has asked businesses for urgent help dealing with a new form of ransomware. The attack is designed to compromise an entire network, rather than just a single computer. Ransomware is a form of malware that damages a computer in a way that's ... usually reversible - but only by the malware creators. Commonly it involves encrypting files or even an entire hard drive so that they can't be accessed without a key, which is only provided when the victim hands over a fee. Last month the FBI put out a warning of a form of ransomware dubbed MSIL/Samas.A. It targets a security vulnerability ... (view more)

Wed
25
Nov
John Lister's picture

Dell Ships PCs With Massive Security Risk

Dell has confirmed it shipped computers with a major built-in security flaw. The unintentional move could expose users to a significant risk of hackers accessing their personal data. The issue at hand deals with an exploit in the secure sockets ... layer (SSL). Specifically, Dell has inadvertently shipped PCs and laptops with both a trusted root certificate and key, when only the trusted certificate should have been allowed. The idea behind the mishap was to help identify Dell computers when they were connected to Dell's online support service. In this case, the computer's model number could be ... (view more)

Mon
16
Feb
Dennis Faas's picture

Reset Admin Password (Windows Vista)?

Infopackets Reader Steve W. writes: " Dear Dennis, Thanks for your articles on how to reset the admin password in Windows XP , and Windows 7 and 8 . I have a friend who is locked out of his Windows Vista machine and was wondering if the instructions ... for resetting the admin password are similar? If not can you tell me how to reset a user account password for Windows Vista? " My Response: Resetting an admin or user password for Windows Vista uses similar methods previously discussed. Note that if you can login as the "Administrator" user, you can also use this account to reset any user password ... (view more)

Fri
05
Dec
John Lister's picture

Experts: Avoid Windows XP Update 'Trick'

Earlier this year, a hack was discovered that would allow Windows XP users to continue receiving security updates , despite Microsoft no longer officially supporting the system . However, experts are now warning users that the hack guarantees ... neither security, nor stable computing. Windows XP: No More Security Updates Microsoft finally pulled the plug on Windows XP in April this year , including all future security updates. The problem is that many people still continue to use the operating system, despite significant security risks . The Windows Embedded hack essentially tricks Windows XP ... (view more)

Thu
13
Nov
Brandon Dimmel's picture

MS Patches 20 Year Old Exploit; XP Still Vulnerable

Microsoft has patched a security vulnerability that somehow evaded detection for roughly twenty years. The bug has reportedly existed in every single version of the Windows operating system since Windows 95. According to reports, the bug can allow a ... hacker to execute code remotely when a user visits a malicious website. IBM security expert Robert Freeman says the bug is related to a flaw in VBScript, which first debuted with Internet Explorer 3.0 in the late 1990s. Freeman says that the bug remains invulnerable to Microsoft's anti-exploitation tools, otherwise known as the Enhanced ... (view more)

Pages

Subscribe to RSS - exploit