Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Topics - ky331

Pages: [1] 2 3 ... 11
1
Microsoft changed the name from
Definition Update for Windows Defender Antivirus to
Security Intelligence Update for Windows Defender Antivirus.

Is it a permanent change or a one-time change? We don't know, because Microsoft did not announce the change. The most likely scenario is that it is a permanent change.


https://www.ghacks.net/2019/07/31/about-security-intelligence-updates-for-microsoft-defender/

2
Microsoft security chief: IE is not a browser, so stop using it as your default

 

Internet Explorer is a 'compatibility solution' for enterprise customers to deal with legacy sites and should only be used selectively, warns Microsoft exec.

 
https://www.zdnet.com/article/microsoft-security-chief-ie-is-not-a-browser-so-stop-using-it-as-your-default/

 
https://techcommunity.microsoft.com/t5/Windows-IT-Pro-Blog/The-perils-of-using-Internet-Explorer-as-your-default-browser/ba-p/331732

 

3
Security Software Programs / MalwareBytes "Updates are not current"
« on: June 03, 2018, 12:34:24 AM »
Database Out of Date Issues

We are aware that users are getting messages that their database is out of date. We are performing maintenance on our database servers and these should be resolved in the next few hours.
This error message should resolve itself once the maintenance is complete.
 
https://forums.malwarebytes.com/topic/231004-database-out-date-issues/

4

Meltdown/Spectre "fixes" on Win7x64 break Sandboxie
   





 

The January Windows Update patches for Meltdown/Spectre on Win7x64 systems, KB4056894 (or KB4056897), have "broken" Sandboxie:

"This program is blocked due to compatibility issues".
"Sandboxie is incompatible with this version of Windows".

Sandboxie has fixed this issue in release 5.23.3 (BETA).

https://forums.sandboxie.com/phpBB3/viewtopic.php?f=11&t=25290

5


https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-7-zip-could-allow-for-arbitrary-code-execution_2018-009/

Multiple vulnerabilities have been discovered in 7-Zip [a free and open-source file archiver] the most severe of which could allow for arbitrary code execution.

7-Zip versions prior to 18.00 are affected.  Users should apply appropriate updates provided by 7-Zip to vulnerable systems.

The current version is 18.01, available from http://www.7-zip.org/

6
https://finance.yahoo.com/news/microsoft-halts-amd-chip-meltdown-114320586.html

FRANKFURT (Reuters) - Microsoft Corp said on Tuesday it had suspended patches to guard against Meltdown and Spectre security threats for some computers running AMD chipsets after complaints by AMD customers that the software updates froze their machines.

"To prevent AMD customers from getting into an unbootable state, Microsoft will temporarily pause sending the following Windows operating system updates to devices with impacted AMD processors at this time," Microsoft said in a support blog.


7
Web News / HP laptop batteries overheating leads to recall
« on: January 06, 2018, 05:56:21 PM »
Laptops sold between December 2015 and December 2017 may be powered by a battery that's prone to overheating or even melting.
https://www.cnet.com/news/hp-laptop-batteries-overheating-leads-to-recall/

If you own a HP laptop or workstation, you can check to see if your unit is affected:
https://batteryprogram687.ext.hp.com/en-US/Home/Validation

8
Web News / PaleMoon claims not vulnerable to Meltdown
« on: January 05, 2018, 10:29:28 AM »
https://forum.palemoon.org/viewtopic.php?f=1&t=17928

Pale Moon isn't vulnerable

Pale Moon already set the granularity for the performance timers sufficiently coarse in Oct 2016 when it became clear that this could be used to perform hardware-timing based attacks and fingerprinting.
Pale Moon also, by design, doesn't allow buffer memory to be shared between threads in JavaScript, so the "SharedArrayBuffer" attack is not possible.

Even so, we will be adding some additional defense-in-depth changes to the upcoming version 27.7 to be absolutely sure there is no further room for any of these sorts of hardware-timing based attacks in the future.


9


https://securityintelligence.com/news/opera-offers-first-built-in-cryptojacking-protection-tool/


According to ZDNet, the beta version of Opera 50 is the first major browser to offer a built-in mechanism that blocks cryptojacking, a new form of malware that leverages the victim’s computer to mine cryptocurrency without permission.

The new antimining tool, called NoCoin, is part of the ad blocker function in Opera. It is disabled by default but can be enabled through the Settings or Preferences page. According to an Opera blog post, the tool blocks cryptocurrency mining scripts just as an ad blocker would disable banner ads and pop-ups.

Without a tool such as NoCoin, a cryptocurrency miner might go undetected until the central processing unit (CPU) usage dramatically increased for no obvious reason, preventing the victim from executing his or her own programs.

10
Due to changes in Firefox-based add-ons, PaleMoon 27 was no longer finding any updates for uBlock Origin.
There is now an addon available for PaleMoon, called uBlock Origin Updater .   Once installed, it will allow PaleMoon to find the latest stable update for uBlock Origin.

https://addons.palemoon.org/addon/ublock0-updater/

11
Cult software Classic Shell has... helped Windows users to customize their experience. It offers enhancements to Windows design and functionality and is well-known to the dedicated users who swear by the program.

http://news.thewindowsclub.com/cult-software-classic-shell-to-close-down-90958/

12
Microsoft forgot to change an expiration date, and now all attempts to run Windows Update in Win7 are failing with the bogus message “Windows Update cannot currently check for updates, because the service is not running.”

https://www.computerworld.com/article/3239729/microsoft-windows/windows-update-for-win7-broken-throwing-error-80248015.html

13
Security Software Programs / MBAE 1.10.x "Perpetual Beta"
« on: July 23, 2017, 11:20:13 AM »
MBAE (Anti-EXPLOIT), which is now in a "perpetual beta" phase, has released version 1.10.1.24   The main difference/feature:   what used to be premium features are now available to ALL/free users!

The following information was copied/pasted from https://forums.malwarebytes.com/topic/205225-mbae-110-latest-standalone-beta/


New Features:

    Added Dynamic Hooking Feature to manage conflicts
    Opened up Premium shields to Free users as part of MBAE Beta
    Opened up addition of custom shields feature to Free users as part of MBAE Beta


 Fixes:

    Fixed dll uninjection issues resulting in ghost process
    Fixed dll uninjection issues with chrome extensions
    Fixed false positive with FLTLDR.exe
    Fixed false positive with QTTabBar plugin in Opera


-----------------------------------------------------------------

It is anticipated that existing MBAE users will be automatically updated to 1.10 "soon".   For anyone wishing to try it out now, it can be downloaded from  https://malwarebytes.box.com/s/xhbp0e8xyj4iom093gdtwyervxva0zxh

(Remark: MBAM 3.x PREMIUM automatically includes the anti-exploit protection.)

14
The following Intel Clover Trail processors are currently not supported on Windows 10 Creators Update:


* Atom Z2760

* Atom Z2520

* Atom Z2560

* Atom Z2580

http://www.zdnet.com/article/microsoft-blocks-windows-10-creators-update-on-some-pcs/

Pages: [1] 2 3 ... 11