zeroday – Page 3 – WindowsTechs.com

Zero-Day Vulnerabilities against Windows in the NSA Tools Released by the Shadow Brokers

Posted on July 28, 2017 by Bruce Schneier

In April, the Shadow Brokers — presumably Russia — released a batch of Windows exploits from what is presumably the NSA. Included in that release were eight different Windows vulnerabilities. Given a presumed theft date of the data as sometime between 2012 and 2013 — based on timestamps of the documents and the limited Windows 8 support of the tools:… Continue reading Zero-Day Vulnerabilities against Windows in the NSA Tools Released by the Shadow Brokers→

Good Article About Google’s Project Zero

Posted on June 30, 2017 by Bruce Schneier

Fortune magazine just published a good article about Google’s Project Zero, which finds and publishes exploits in other companies’ software products. I have mixed feeling about it. The project does great work, and the Internet has benefited enormously from these efforts. But as long as it is embedded inside Google, it has to deal with accusations that it targets Google… Continue reading Good Article About Google’s Project Zero→

Is Continuing to Patch Windows XP a Mistake?

Posted on June 21, 2017 by Bruce Schneier

Last week, Microsoft issued a security patch for Windows XP, a 16-year-old operating system that Microsoft officially no longer supports. Last month, Microsoft issued a Windows XP patch for the vulnerability used in WannaCry. Is this a good idea? This 2014 essay argues that it’s not: The zero-day flaw and its exploitation is unfortunate, and Microsoft is likely smarting from… Continue reading Is Continuing to Patch Windows XP a Mistake?→

The DEA Is Buying Cyberweapons from Hacking Team

Posted on April 20, 2017 by Bruce Schneier

The US Drug Enforcement Agency has purchased zero-day exploits from the cyberweapons arms manufacturer Hacking Team. BoingBoing post…. Continue reading The DEA Is Buying Cyberweapons from Hacking Team→

Mysterious Microsoft patch killed 0days released by NSA-leaking Shadow Brokers

Posted on April 15, 2017 by Dan Goodin

Microsoft fixed critical vulnerabilities in uncredited update released in March. Continue reading Mysterious Microsoft patch killed 0days released by NSA-leaking Shadow Brokers→

Microsoft Word 0day used to push dangerous Dridex malware on millions

Posted on April 11, 2017 by Dan Goodin

Blast could give a boost to Dridex, one of the Internet’s worst bank-fraud threats. Continue reading Microsoft Word 0day used to push dangerous Dridex malware on millions→

Booby-trapped Word documents in the wild exploit critical Microsoft 0day

Posted on April 8, 2017 by Dan Goodin

There’s currently no patch for the bug, which affects most or all versions of Word. Continue reading Booby-trapped Word documents in the wild exploit critical Microsoft 0day→

WikiLeaks Not Disclosing CIA-Hoarded Vulnerabilities to Companies

Posted on March 21, 2017 by Bruce Schneier

WikiLeaks has started publishing a large collection of classified CIA documents, including information on several — possibly many — unpublished (i.e., zero-day) vulnerabilities in computing equipment used by Americans. Despite assurances that the US government prioritizes defense over offense, it seems that the CIA was hoarding vulnerabilities. (It’s not just the CIA; last year we learned that the NSA is,… Continue reading WikiLeaks Not Disclosing CIA-Hoarded Vulnerabilities to Companies→

WikiLeaks Releases CIA Hacking Tools

Posted on March 7, 2017 by Bruce Schneier

WikiLeaks just released a cache of 8,761 classified CIA documents from 2012 to 2016, including details of its offensive Internet operations. I have not read through any of them yet. If you see something interesting, tell us in the comments. EDITED TO ADD: There’s a lot in here. Many of the hacking tools are redacted, with the tar files and… Continue reading WikiLeaks Releases CIA Hacking Tools→

Duqu Malware Techniques Used by Cybercriminals

Posted on February 16, 2017 by Bruce Schneier

Duqu 2.0 is a really impressive piece of malware, related to Stuxnet and probably written by the NSA. One of its security features is that it stays resident in its host’s memory without ever writing persistent files to the system’s drives. Now, this same technique is being used by criminals: Now, fileless malware is going mainstream, as financially motivated criminal… Continue reading Duqu Malware Techniques Used by Cybercriminals→