Search Results for: xp

The Windows 10 Start menu gives you easy access to all of your programs and important settings, and -- for now at least -- optional Live Tiles. The search box makes it easy to find what you’re looking for too... when it works.

But if you hanker for the days when Start menus were simpler, you might want to consider adding a Windows XP style menu to Windows 10.

Continue reading →

Microsoft has released a series of patches for a zero-day vulnerability in Internet Explorer that was being actively exploited.

The remote code execution flaw was discovered a few weeks ago, and while 0patch released a micropatch to fix the problem, Microsoft only suggested a workaround which ended up breaking printing for many people. But now patches have been made available for Windows 7, Windows 8.x, Windows 10, Windows Server 2008 and Windows Server 2012.

Continue reading →

The total number of records exposed by data breaches increased by 284 percent last year compared to 2018, with over 15.1 billion records exposed in total.

This is one of the findings of the 2019 Year End Data Breach QuickView Report from Risk Based Security although the total number of 2019 breaches disclosed so far (7,098) is up only one percent.

Continue reading →

Details of a nine-year-old security vulnerability with the sudo utility found in numerous Unix and Linux based operating systems have been revealed.

The flaw, which affects the likes of Linux Mint and Elementary OS, could be exploited to give users root privileges on a vulnerable system. Sudo versions 1.7.1 to 1.8.30 are at risk if the pwfeedback option is enabled.

Continue reading →

The compromised information from credit card breaches often ends up on dark web marketplaces, leaving victims at risk for having their precious information sold in a transaction that's entirely out of their control.

But, people often are clueless about whether their breached data ended up on the dark web. Many assume it did and, hopefully, go through the recommended steps to stay safe from cyber identity theft.

Continue reading →

Having now embraced the same engine as Chrome, the Chromium-based Edge is now Microsoft's default browser. If you want to keep using Microsoft Edge Legacy and Internet Explorer 11 for some reason, Microsoft has opened up a way to do so -- and to do so safely.

The company has released virtual machine images that include both web browser. Available free of charge, the images are available for a range of virtualization platforms.

Continue reading →

Microsoft has issued an optional update for Windows 10 versions 1903 and 1909. Among other things, the update fixes Explorer problems introduced by the November 2019 Update.

The same update is available for both version of Windows 10 because, as Microsoft explains, both "1903 and 1909 share a common core operating system and an identical set of system files". While the update, KB4532695, includes a number of fixes, it is the addressing of Explorer issues that will be most welcomed.

Continue reading →

A self-described "reverser/pwner [and] Windows kernel hacker" has demoed a working exploit for two recently discovered vulnerabilities in Windows Remote Desktop Gateway (RD Gateway).

The exploit takes advantage of the CVE-2020-0609 and CVE-2020-0610 vulnerabilities which have already been shown to make a denial of service attack possible. Now Luca Marcelli has shown how the same vulnerabilities can be exploited in a Remote Code Execution attack.

Continue reading →

We're still waiting for Microsoft to release a patch for the actively exploited security vulnerability in Internet Explorer -- at least for those who will receive it. In the meantime, the company suggested a workaround which involved restricting access to JScript.dll, acknowledging that this might lead to certain problems.

But it seems that the company underestimated the negative impact the workaround could have. In addition to problems with services that rely on JScript.dll or PAC scripts, users are also experiencing problems with printing.

Continue reading →

Internet Explorer may be a relic from the past, but it's still out there and used by surprising numbers of people. Not all versions of it are supported by Microsoft anymore, so when a critical bug was discovered in the Windows 7, 8.x, 10, Windows Server 2008 and 2012 versions of the browser, there were questions about who was going to be protected.

The bug was revealed just days after support ended for Windows 7, and it wasn't clear whether Microsoft would stick to its guns and leave those people still using this operating system out in the cold and unprotected. The company has now confirmed what's going to happen.

Continue reading →

Apple's Safari web browser was found to have multiple security flaws that allowed for user's online activity to be tracked, say Google researchers.

In a yet-to-be-published paper, the researchers reveal issues in a Safari feature which is actually supposed to increase user privacy. The Intelligent Tracking Prevention (ITP) feature found in the iOS, iPadOS and macOS version of the browser is meant to block tracking, but vulnerabilities mean that third parties could have accessed sensitive information about users' browsing habits.

Continue reading →

At the end of last week, a serious vulnerability was discovered in Internet Explorer, affecting all versions of Windows. Not only is the bug (CVE-2020-0674) being actively exploited, but for Windows 7 users the vulnerability was exposed right after their operating system reached the end of its life.

Even for users of newer versions of Windows, and despite the severity of the security flaw, Microsoft said it would not be releasing a patch until February. Stepping in to plug the gap comes 0patch with a free micropatch for all versions of Windows affected by the vulnerability.

Continue reading →

A new report reveals how Microsoft exposed nearly 250 million Customer Service and Support records online late last year.

The security research team at Comparitech discovered five servers, each of which contained the same 250 million logs of conversations with Microsoft support agents and customers. The records, which spanned 2005 to December 2019, were accessible to anyone with internet access; no password protection or encryption was used.

Continue reading →

Microsoft says it is working on a fix for a serious security vulnerability in Internet Explorer. The bug affects versions 9, 10 and 11 of the browser in Windows 7, 8.x, 10, Windows Server 2008 and 2012.

The memory handling bug can be exploited by an attacker to run malicious code on a target computer, but despite its severity, Microsoft is unlikely to release the fix before next month's Patch Tuesday. News of the vulnerability comes just days after Microsoft ended support for Windows 7.

Continue reading →

A new online fraud scheme is designed to trick people into thinking they are owed compensation for data leaks only to scam them out of cash.

Researchers at Kaspersky uncovered the scam which tries to get users to purchase 'temporary US social security numbers' at a cost of around $9 each. Victims have been found in Russia, Algeria, Egypt and the UAE, as well as other countries.

Continue reading →