update – Page 8 – WindowsTechs.com

Microsoft’s chip patch is messing with anti-virus products

Posted on January 5, 2018 by Chris Bing

Some major anti-virus software vendors were forced to reconfigure their programs after Microsoft rolled out a patch that changed their products’ processing architecture, industry experts tell CyberScoop. In response to the “Spectre” and “Meltdown” vulnerabilities, which affect nearly every microchip created since 1995, Microsoft immediately offered a software patch that would prevent attackers from targeting these flaws. Microsoft and Amazon — much like the microchip makers — have known about the two vulnerabilities for months but have been under a strict embargo. During this timeframe, Microsoft worked on creating an adequate software update that could remediate the problems. However, due to the embargo, many cybersecurity companies were left in the dark; entirely unaware that either Microsoft or the microchip industry was dealing with the issue. This lapse in coordination is currently causing major headaches for security companies. Microsoft’s emergency update causes the operating system to change how it processes data at the kernel level. Processes […]

The post Microsoft’s chip patch is messing with anti-virus products appeared first on Cyberscoop.

Continue reading Microsoft’s chip patch is messing with anti-virus products→

Script Update – Mac MRU Parser v1.5 – Added Volume Analysis Support and Other Stuff!

Posted on December 11, 2017 by Sarah Edwards

Get the script here!Added volume analysis support for the following plists. These are not really MRUs but it could be damn useful to gather this info.Sidebar List plist [10.12-] – /Users/<username>/Library/Preferences/com.apple.sidebarl… Continue reading Script Update – Mac MRU Parser v1.5 – Added Volume Analysis Support and Other Stuff!→

Script Update – Mac MRU Parser v1.3 – New 10.13 *.sfl2 MRU Files

Posted on October 17, 2017 by Sarah Edwards

Just a quick script update!New with 10.13 High Sierra are the newer format *.sfl2 Mac MRU files. The format changes slightly from the older *.sfl files found in 10.11 and 10.12. It also uses the analyst infuriating NSKeyedArchiver format. An example of… Continue reading Script Update – Mac MRU Parser v1.3 – New 10.13 *.sfl2 MRU Files→

CCleaner attack was focused on stealing data from top level tech firms

Posted on September 21, 2017 by Chris Bing

A highly advanced hacking group infected more than 2 million computers with a backdoor implant in order to reach only a select few companies in order to steal trade secrets and intellectual property, according to analysis provided to CyberScoop and new findings published by cybersecurity firms Cisco and the affected vendor, Avast. Researchers believe the hacking group may be a advanced persistent threat (APT) tied to China, although the early evidence is inconclusive. An investigation is ongoing between Avast, its subsidiary Piriform and the FBI. If the operation was in fact backed by Beijing, it would likely violate a 2015 agreement made between the U.S. and China that halted economic espionage between the two countries. Accurate attribution at this stage of the probe remains difficult, experts say. “The attack was targeting select large technology and telecommunication companies in Japan, Taiwan, UK, Germany and the U.S.,” Avast chief technology officer Ondřej Vlček wrote […]

The post CCleaner attack was focused on stealing data from top level tech firms appeared first on Cyberscoop.

Continue reading CCleaner attack was focused on stealing data from top level tech firms→

Maersk may lose up to $300M due to NotPetya attack

Posted on August 17, 2017 by Chris Bing

The world’s largest container shipping company, A.P. Moller-Maersk, has said that it expects as much as a $300 million dip in profits due to a June 27 ransomware incident, the firm noted in a public report released Wednesday. Maersk executives said they expected losses of between $200 million and $300 million — which will be reflected in the next earnings report — because of a “significant business interruption” caused by the spread of a ransomware variant known as NotPetya inside corporate networks. The disclosure was attached to Maersk’s second-quarter earnings report. Public companies are required to publicly update their investors on the state of the business once every fiscal quarter. While NotPetya was engineered to look like ordinary ransomware, the virus held hidden code that would delete files on an infected computer. Ransomware is not typically designed to be destructive. In most cases, ransomware operators hope to encrypt files on […]

The post Maersk may lose up to $300M due to NotPetya attack appeared first on Cyberscoop.

Continue reading Maersk may lose up to $300M due to NotPetya attack→

Hundreds of ‘smart’ locks bricked by flubbed remote update

Posted on August 14, 2017 by David Bisson

A fouled-up over-the-air firmware update rendered hundreds of a smart lock vendor’s products unopenable.
Whoops.
David Bisson reports.
Continue reading Hundreds of ‘smart’ locks bricked by flubbed remote update→

Script Update – Mac MRU Parser – Spotlight Shortcuts & BLOB Parsing!

Posted on July 20, 2017 by Sarah Edwards

Get the script here!Added in Spotlight ShortcutsI’ve updated my macMRU.py script to parse the Spotlight Shortcuts plist file that I consider to be very MRU-like. This plist file contains what the user typed into the Spotlight search window, what they c… Continue reading Script Update – Mac MRU Parser – Spotlight Shortcuts & BLOB Parsing!→

Script Update – Mac (& iOS) Location Scraper (macOS and iOS 10 Updates)

Posted on July 5, 2017 by Sarah Edwards

Yep, you read that right – Mac Location Scraper! I’ve updated my ‘iOS Location Scraper’ script to be compatible with the same location database found on iOS – the cache_encryptedA.db (and lockCache_encryptedA.db) that are now found on macOS at lea… Continue reading Script Update – Mac (& iOS) Location Scraper (macOS and iOS 10 Updates)→

Blast from the past – Patch Tuesday updates for Windows XP

Posted on June 14, 2017 by Paul Ducklin

Dust off your company procedures for Patch Tuesday! XP gets a raft of official updates this month to fix publicly-known holes. Continue reading Blast from the past – Patch Tuesday updates for Windows XP→

What is Redeploy Me Now in Azure?

Posted on May 17, 2017 by Windows IT Pro

Understand the redeploy me now Azure feature.