Patch That WhatsApp Zero-Day Exploit
Facebook has recently patched a critical zero-day exploit in WhatsApp, WhatsApp is urging users to update as soon as possible because hackers are able to exploit you remotely to install spyware on phones by calling the targeted device.
WhatsApp did not name the threat actor exploiting the CVE-2019-3568, it described the attackers as an “advanced cyber actor” that targeted “a select number of users.”
A WhatsApp advisory confirmed Monday that the flaw – now patched – is a
WhatsApp buffer overflow vulnerability in WhatsApp’s VOIP stack, which allows remote code execution via specially crafted series of SRTCP [Secure Real Time Transport Protocol] packets sent to a target phone number.
“A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of SRTCP packets sent to a target phone number.” details provided by Facebook.
Facebook however did fix the issue with the release of WhatsApp … Read the rest
Amazon Alexa has some new HIPAA enabled Skills
Amazon Alexa has some new HIPAA Compliant enabled Skills Kit. Covered Entities and their Business Associates, subject to the U.S. Health Insurance Portability and Accountability Act of 1996 (HIPAA), to build Alexa skills that transmit and receive protected health information as part of an invite-only program. There are six new Alexa healthcare skills from industry-leading healthcare providers, payors, pharmacy benefit managers, and digital health coaching companies are now operating in the HIPAA-eligible environment. If you are interested in getting updates, click here.
New Healthcare Skills
The new skills are designed to help customers manage a variety of healthcare needs at home simply using voice – whether it’s booking a medical appointment, accessing hospital post-discharge instructions, checking on the status of a prescription delivery, and more.
The new HIPAA compliant healthcare skills:
- Express Scripts (a leading Pharmacy Services Organization): Members can check the status of a home delivery prescription and
Everyone Needs To Patch 3 Nvidia Driver Flaws
If your a Business, Gamer or a regular awesome person using the Nivida Chipset you definitely need to patch the Nvidia driver as soon as possible because of the following 3 flaws.
“[The driver] contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where the product does not properly synchronize shared data, such as static variables across threads, which can lead to undefined behavior and unpredictable data changes, which may lead to denial of service, escalation of privileges or information disclosure.”
The most severe of the flaws is the CVE‑2019‑5675. This flaw could be used to launch DoS attacks that could cripple the system, as well as give the hackers escalation privileges and disclose system information, from what was said on a Thursday advisory released by Nvidia.
The second flaw, CVE‑2019‑5676, exists in the driver’s software install package and is also rated high-severity. The software actually … Read the rest
A Free decryptor tool for ZQ Ransomware
Victims affected by the ZQ Ransomware can have a breathe of relief due to researchers developing a free decryptor tool to decrypt files encrypted by the ZQ Ransomware.
About The ZQ Ransomware
Michael Gillespie Discovered this specific ransomware that adds a specific ZQ extension to encrypted files. The malware has infected users in the US, India, Poland, Brazil and the UK.
Once the ransomware is installed, it encrypts the victim’s files using the Salsa20 and RSA-1024 algorithms and then it will add the “.w_decrypt24@qq[.]com.zq” extension to the encrypted files.
When the encryption process is complete, the ransomware drops a ransom note named HELP_DECRYPT.txt. The ransom note includes instructions about the payment process. It also includes the contact address of the operators. Victims affected by the ransomware are required to send a message to the email address w_decrypt24@qq[.]com.
How does the decryptor work?
In order to decrypt the files, victims need … Read the rest
Malware Can Hide Within DICOM Medical Images
It has been found that malware can now hide within DICOM medical images. These are the type of images that doctors look at when they do XRay, CT or MRI scans.
The analysis named Markel Picado Ortiz was able to take advantage of the DICOM flaw which allows the “128-byte section at the beginning of the file, called the preamble” to be injected with malware.
“By mixing in with protected health information malware can effectivelyexploit the data’s clinical and regulatory implications to evade detection and derail remediation attempts while creating a host of new concerns for security teams, healthcare organizations, and antivirus companies in the process,” Ortiz wrote.
“This vulnerability stands apart as one whose technical potency is derived from not just a software design flaw, but from the clinical and regulatory environment as well,” he added.
If hackers were to exploit the design flaw in DICOM, they’d be able … Read the rest
Horrible Call Quality With Samsung Galaxy s10 Lineup
The Samsung Galaxy s10 lineup of phones are great machines, the specs are great and the hard within them are amazing. However what in the world is going on with the call quality of these phones? I have been doing some research and many other people are ranting and raving on the Samsung forums and on Reddit about having the same issues with horrible phone call quality.
People have mentioned that it could be a carrier issue with ATT, however others like myself have Version and are experiencing the same issue.
Troubleshooting the issue:
What I have experienced during phone calls with people and they make some sort of high pitched tone the phone would magnify and focus on that high pitched sound, background noise would also be enhanced with ear piercing sounds which would cause me move my phone away from my ear. After some research I have found … Read the rest
Free Secure File Transfer by Firefox Send
Firefox Send allows you to securely share small to large file sizes which is perfect for docs and sharing graphic files or collaborating with co-workers on a presentation. With Send you can share file sizes up to 1GB quickly. To send files up to 2.5GB, sign up for a free Firefox account.
The software uses end-to-end encryption to keep your data secure from the moment you share to the moment your file is opened. It also offers security controls that you can set. You can choose when your file link expires, the number of downloads, and whether to add an optional password for an extra layer of security.
Firefox Send makes it easy for your recipient, too. No hoops to jump through. They simply receive a link to click and download the file. They don’t need to have a Firefox account to access your file. Overall, this makes the … Read the rest
Microsofts April 9th security update impacts some antivirus software vendors
People have been noticing that Microsoft’s recent April 9th security update is causing some problems with a few antivirus vendors like Sophos, Avira, Avast, McAfee and some others.
Microsoft has stated that the the Security Update is causing end user computers to have very slow startup times bad performance and be unresponsive and even causing systems to fail to boot.
“Microsoft is working on a resolution and will provide an update in an upcoming release,” according to Microsoft.
Currently the root cause of the issue by the April 9th security patch is unclear. But both McAfee and Avast suggest that the problems are tied to the change Microsoft made within the Windows Client-Server Runtime Subsystem (csrss.exe). This CSRSS process is a vital part of Windows and is responsible for many windows functions.
Currently there is no fix for this issue.
… Read the rest
Microsoft Outlook.com Email Accounts Breached By Hackers
Many users received a notification from Microsoft Outlook.com letting them know about accounts being breached by hackers.
A Motherboard report said that the breach is “much worse” than what was reported. The hackers were able to access emails and attachments and that the hackers were able to access a large number of Outlook, MSN and Hotmail email accounts.
“We addressed this scheme, which affected a limited subset of consumer accounts, by disabling the compromised credentials and blocking the perpetrators’ access,” a Microsoft spokesperson meanwhile said in a statement.
“Upon awareness of this issue, Microsoft immediately disabled the compromised credentials, prohibiting their use for any further unauthorized access,” Microsoft said. “Our data indicates that account-related information (but not the content of any emails) could have been viewed, but Microsoft has no indication why that information was viewed or how it may have been used.”
Public Announcement from Microsoft
Microsoft said to … Read the rest
Windows Zero-Day Exploit
Windows has recently released a patch for a vulnerability exploit in the windows operating system which was unknown to many people until last week. The vulnerability would allow a hacker to open a door for full system control.
Discovered by Vasily Berdnikov and Boris Larin of Kaspersky Lab on St. Patrick’s Day this year, the flaw (CVE-2019-0859) is a use-after-free issue in the Windows kernel that allows local privilege escalation (LPE). It’s being used in advanced persistent threat (APT) campaigns targeting 64-bit versions of Windows (from Windows 7 to older builds of Windows 10).
win32k!xxxFreeWindow+0x1344 on up-to-date Windows 7 SP1 x64
The exploit we found in the wild was targeting 64-bit versions of Windows (from Windows 7 to older builds of Windows 10) and exploited the vulnerability using the well-known HMValidateHandle technique to bypass ASLR.
After a successful exploitation, the exploit executed PowerShell with a Base64 encoded command. … Read the rest
Loading ...