Researchers Found Another Major Security Flaw in Intel CPUs

477461-intel-6th-gen-chips

Security researchers have found another flaw in Intel CPUs — this time related to Intel Active Management Technology. Once again, this flaw can be leveraged to take complete control of a system, regardless of any security measures the user might employ.

The post Researchers Found Another Major Security Flaw in Intel CPUs appeared first on ExtremeTech.

The original article can be found here: https://www.extremetech.com/computing/262031-researchers-found-another-major-security-flaw-intel-cpus?source=Computing

Powered by WPeMatico

New macOS Security Bug Unlocks App Store With Any Password

Apple’s macOS High Sierra has a flaw in the latest version that allows admin users to bypass a locked app store by entering any password they like.

The post New macOS Security Bug Unlocks App Store With Any Password appeared first on ExtremeTech.

The original article can be found here: https://www.extremetech.com/computing/261843-new-macos-security-bug-unlocks-app-store-password?source=Computing

Powered by WPeMatico

Major Hyper-Threading Flaw Destabilizes Intel Kaby Lake, Skylake CPUs

528188-intel-kaby-lake-processor-7th-generation-chip

A recent flaw discovered in Intel’s Hyper-Threading can cause system instabilities or crashes. Debian recommends disabling HT until appropriate UEFI updates are available (and the flaw can affect all operating systems, including Windows).

The post Major Hyper-Threading Flaw Destabilizes Intel Kaby Lake, Skylake CPUs appeared first on ExtremeTech.

The original article can be found here: https://www.extremetech.com/computing/251499-major-hyper-threading-flaw-can-destabilize-intel-cpus-based-kaby-lake-skylake?source=Computing

Powered by WPeMatico

Major Intel Security Flaw Is More Serious Than First Thought

Intel-Chipset

Last week, Intel disclosed a serious security flaw that could be used to gain remote access to business computers without the OS ever knowing such access had occurred. Now we know the situation is even worse than we thought.

The post Major Intel Security Flaw Is More Serious Than First Thought appeared first on ExtremeTech.

The original article can be found here: https://www.extremetech.com/computing/248919-major-intel-security-flaw-serious-first-thought?source=Computing

Powered by WPeMatico

An Intel Atom C2000 bug is killing products from multiple manufacturers

Intel-Avoton

Intel’s Avoton and Rangeley server products appear to have a significant flaw that’s killing hardware years before its expected end-of-life.

The post An Intel Atom C2000 bug is killing products from multiple manufacturers appeared first on ExtremeTech.

The original article can be found here: https://www.extremetech.com/computing/244074-intel-atom-c2000-bug-killing-products-multiple-manufacturers?source=Computing

Powered by WPeMatico

Linux flaw puts 1.4 billion Android devices at risk of spying attack, experts warn

A Linux flaw that lets attackers hijack internet traffic also affects nearly 80 percent of Android devices, security researchers warn.

The original article can be found here: http://www.foxnews.com/tech/2016/08/16/linux-flaw-puts-1-4-billion-android-devices-at-risk-spying-attack-experts-warn.html

Powered by WPeMatico

Apple correcting Siri "abortion" search issue uncovered in 2011

Article Image More than four years after the discovery of a purported Siri flaw that led users searching for abortion clinics to adoption agencies and fertility clinics, it seems Apple and its data providers are slowly working to correct the issue.

The original article can be found here: http://appleinsider.com.feedsportal.com/c/33975/f/616168/s/4d3c642a/sc/28/l/0Lappleinsider0N0Carticles0C160C0A10C290Capple0Ecorrecting0Esiri0Eabortion0Esearch0Eissue0Euncovered0Ein0E20A11/story01.htm

Powered by WPeMatico

Another new kernel flaw that Google won't fix for Android users prompts more switching to Apple's iOS

Article Image A new kernel privilege escalation flaw discovered in the Linux kernel requires server operators to install a patch, but is not going to be fixed for the majority of Android users. After record numbers switched to iOS last quarter, Google’s inability to update its user base is inciting switchers to move to iPhones even faster.

The original article can be found here: http://appleinsider.com.feedsportal.com/c/33975/f/616168/s/4d02b569/sc/15/l/0Lappleinsider0N0Carticles0C160C0A10C20A0Canother0Enew0Ekernel0Eflaw0Ethat0Egoogle0Ewont0Efix0Efor0Eandroid0Eusers0Eprompts0Emore0Eswitching0Eto0Eapples0Eios/story01.htm

Powered by WPeMatico

Nvidia blames Apple for GPU bug that breaks Chrome’s incognito mode

Nvidia GeForce GK106 GPU Core
There’s an embarrassing flaw in the way some discrete video cards handle web browsing — and it could show other PC users a lot more about your browsing habits than you’d like them to know.

The original article can be found here: http://www.extremetech.com/computing/221208-nvidia-blames-apple-for-gpu-bug-that-breaks-chromes-incognito-mode

Powered by WPeMatico

Security Certificate Issues Plague Dell


Dell earlier this week announced that it was notified of a security flaw linked to a certificate that it installed on computer systems starting on Aug. 18. The eDellroot certificate was installed by Dell Foundation Services application as a means to help users more easily perform maintenance and service tasks on their computers, the company said. The certificate is not malware or adware, according to Dell. Rather, it was provided with a download designed to provide a system service tag to Dell online support.

The original article can be found here: http://www.ecommercetimes.com/story/82799.html?rss=1

Powered by WPeMatico

The pen is mightier: Samsung modifies Galaxy Note 5 packaging to warn about stuck stylus

Article Image Rather than fix a flaw that can permanently damage its latest flagship phablet, Samsung has instead opted to revise the packaging for the Galaxy Note 5, warning users not to insert the device’s S Pen back into the handset in the wrong direction.

The original article can be found here: http://appleinsider.com.feedsportal.com/c/33975/f/616168/s/4b94f06d/sc/15/l/0Lappleinsider0N0Carticles0C150C110C170Cthe0Epen0Eis0Emightier0Esamsung0Emodifies0Egalaxy0Enote0E50Epackaging0Eto0Ewarn0Eabout0Estuck0Estylus/story01.htm

Powered by WPeMatico

Mozilla Plugs Dangerous Firefox Zero-Day Hole


Mozilla on Friday released security updates to fix a zero-day flaw in the Firefox browser. An exploit that searches for sensitive files and uploads them to a server — possibly somewhere in Ukraine — has surfaced in an ad on a Russian news site, Mozilla reported last week. The exploit impacts Windows and Linux users. Mac users could be hit by a modified version. The vulnerability stems from the interaction of Firefox’s PDF Viewer and the mechanism that enforces JavaScript context separation — the “same origin” policy, Mozilla said.

The original article can be found here: http://www.ecommercetimes.com/story/82359.html?rss=1

Powered by WPeMatico

Apple to patch actively-exploited privilege escalation bug in OS X 10.10.5 – report

A recently-discovered flaw in Apple’s desktop operating system that allows attackers to gain root-level access without requiring users’ passwords will be reportedly be fixed in the final release of OS X 10.10.5, which is already in beta.

The original article can be found here: http://appleinsider.com.feedsportal.com/c/33975/f/616168/s/48bb0baa/sc/15/l/0Lappleinsider0N0Carticles0C150C0A80C0A50Capple0Eto0Epatch0Eactively0Eexploited0Eprivilege0Eescalation0Ebug0Ein0Eos0Ex0E10A10A50E0E0Ereport/story01.htm

Powered by WPeMatico

Adobe addresses new 'actively exploited' critical vulnerability in Flash, users urged to update

Yet another severe flaw in Adobe’s much-maligned Flash Player has been discovered and is being “actively exploited,” the company said on Tuesday, and users with Flash installed are being urged to upgrade to the latest version as soon as possible.



The original article can be found here: http://appleinsider.com.feedsportal.com/c/33975/f/616168/s/4788951f/sc/28/l/0Lappleinsider0N0Carticles0C150C0A60C240Cadobe0Eaddresses0Enew0Eactively0Eexploited0Ecritical0Evulnerability0Ein0Eflash0Eusers0Eurged0Eto0Eupdate/story01.htm

Powered by WPeMatico

Warning: Major iPhone security flaw lets hackers steal all your passwords

A very serious security flaw in Apple’s iOS mobile platform and its OS X desktop operating system has been discovered by security researchers and seemingly acknowledged by Apple.

The original article can be found here: http://www.foxnews.com/tech/2015/06/17/warning-major-iphone-security-flaw-lets-hackers-steal-all-your-passwords/

Powered by WPeMatico

Apple Watch rollout delayed by defective Taptic Engine vibrator

A report on Wednesday claims Apple discovered a serious flaw in certain vibrator mechanisms that power Apple Watch’s Taptic Engine, prompting completed units to be scrapped just prior to launch.



The original article can be found here: http://appleinsider.com.feedsportal.com/c/33975/f/616168/s/45dceccc/sc/28/l/0Lappleinsider0N0Carticles0C150C0A40C290Capple0Ewatch0Erollout0Edelayed0Eby0Edefective0Etaptic0Eengine0Evibrator/story01.htm

Powered by WPeMatico

Apple, Microsoft buck trend, refuse to block unauthorized Chinese root certificates

Android-IOS-Iphon
Several weeks after researchers found a critical certificate flaw, Google and Mozilla have taken steps to resolve the issue, but not Apple or Microsoft.

The original article can be found here: http://www.extremetech.com/computing/203049-apple-microsoft-buck-trend-refuse-to-block-unauthorized-chinese-root-certificates

Powered by WPeMatico