Windows Remote Assistance Exploit Lets Hackers Steal Sensitive Files

You have always been warned not to share remote access to your computer with untrusted people for any reason—it’s a basic cybersecurity advice, and common sense, right?

But what if, I say you should not even trust anyone who invites or offer you full remote access to their computers.

A critical vulnerability has been discovered in Microsoft’s Windows Remote Assistance (Quick Assist) feature

Apple Blocks Sites From Abusing HSTS Security Standard to Track Users

If you are unaware, the security standard HTTP Strict Transport Security (HSTS) can be abused as a ‘supercookie’ to surreptitiously track users of almost every modern web browser online without their knowledge even when they use “private browsing.”

Apple has now added mitigations to its open-source browser infrastructure WebKit that underpins its Safari web browser to prevent HSTS abuse after

USN-3601-1: Memcached vulnerability

memcached vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 17.10
  • Ubuntu 16.04 LTS
  • Ubuntu 14.04 LTS


Memcached could be made to crash if it received specially crafted network

Software Description

  • memcached – high-performance memory object caching system


It was discovered that Memcached incorrectly handled reusing certain items.
A remote attacker could possibly use this issue to cause Memcached to
crash, resulting in a denial of service.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 17.10
Ubuntu 16.04 LTS
Ubuntu 14.04 LTS

To update your system, please follow these instructions:

In general, a standard system update will make all the necessary changes.


Read More

RottenSys: Some smartphones are coming with malware already installed

This is probably the one smartphone feature you did not have on your “must have” list: Researchers have uncovered a stream of phones hitting the market which come with malware, named RottenSys, pre-installed – without their new owners having to do a single swipe. Nearly 5 million phones are believed to be included in this scheme. […]

The post RottenSys: Some smartphones are coming with malware already installed appeared first on Avira Blog.

Read More

Five smartphones from the Mobile World Congress

Cinque smartphone dal Mobile World Congress

With the 2018 Mobile World Congress having just concluded, we can now review what was presented. There was no knockout presentation, no new rising trend: only the impression that this edition was just an obligatory yet non-essential meeting heading towards a new way of understanding mobile telephony. Besides, a toned-down gathering was to be expected: […]

The post Five smartphones from the Mobile World Congress appeared first on Avira Blog.

Read More

Software and Security Information