An anonymous security researcher called SandboxEscaper has publicly shared a second zero-day exploit that bypasses a recently patched vulnerability in the Microsoft Windows operating system. Dubbed ByeBear, the new exploit abuses Microsoft Edge browser to write discretionary access control list (DACL) as SYSTEM privilege. “It’s going to increase the threadRead More…
Tenable Inc, the Cyber Exposure company, announced that its research team has discovered a vulnerability in the Slack Desktop Application for Windows that could have allowed an attacker to alter where a victim’s files are stored when the documents are downloaded within Slack.Read More…
Earlier this week, AMD released the updates for Google Project Zero (GPZ) Variant 2 (Spectre) for Microsoft Windows users to mitigate the vulnerabilities and safeguard its products against Spectre flaw.Read More…
Microsoft believes the Meltdown and Spectre fixes will slow down servers drastically and reduce the performance of personal computers as well. In a blog post, the firm suggested that the slowdowns from the Meltdown and Spectre fixes could be a lot more extensive than Intel suggested previously. Read More…
