Microsoft has updated the available Office 2016 Administrative Templates for Group Policy configuration. The updated admx files include new settings to block macros from running in Word documents, Excel spreadsheets, or PowerPoint presentations that originated from the Internet. Microsoft has provided this updated mitigation to provide control to a popular vector that malware, … [Read more...]
Built-in browser functions prove server-side validation necessary
Web developers can easily make a wrong assumption in what they place their trust in. You create a web application and test it out to verify it works to spec. It only allows certain functionality, requires fields, and displays the results. The problem comes about when the developers rely on the browser to provide one of the walls to the app's security. "I don't need to worry … [Read more...]
Pwn2Own 2016 results
With some slight changes to Pwn2Own this year, the hacking event is underway with one day completed. Day One So far, there have been 6 attempts against the targets, which include VMware Workstation, Google Chrome, Microsoft Edge, Adobe Flash, and Apple Safari. Out of those 6 attempts, 4 have been successful, 1 was partially successful (the exploit was previously reported), … [Read more...]
Microsoft announces Windows Defender Advanced Threat Protection for Windows 10
Microsoft announced increased capability coming to the Windows 10 built-in malware protection service Windows Defender. The new abilities will be labeled Windows Defender Advanced Threat Protection and will be available this year. While Windows Defender can protect a single machine, it is not very useful in the enterprise environment as it lacks central reporting and … [Read more...]
ESET antivirus false positive blocks website access
ESET experienced a false positive this morning. It was falsely identifying various websites as Javascript or HTML threats. The definition database, version 13102, was pushed out and expanded JS/ScrInject.B trojan and HTML/Refresh.BC trojan to include the false positives. ESET wrote up the experience in Alert5879 and have since deployed an updated virus signature database … [Read more...]