JUST IN: Install Latest Chrome Update to Patch 0-Day Bug Under Active Attacks #AcePCHelpDesk report

Install Latest Chrome Update to Patch 0-Day Bug Under Active Attackschrome browser software update
Google yesterday released a new critical software update for its Chrome web browser for desktops that will be rolled out to Windows, Mac, and Linux users over the next few days.

The latest Chrome 80.0.3987.122 includes security fixes for three new vulnerabilities, all of which have been marked ‘HIGH’ in severity, including one that (CVE-2020-6418) has been reportedly exploited in the wild.

The brief description of the Chrome bugs, which impose a significant risk to your systems if left unpatched, are as follows:

  • Integer overflow in ICU — Reported by André Bargull on 2020-01-22
  • Out of bounds memory access in streams (CVE-2020-6407) — Reported by Sergei Glazunov of Google Project Zero on 2020-01-27
  • Type confusion in V8 (CVE-2020-6418) — Reported by Clement Lecigne of Google’s Threat Analysis Group on 2020-02-18

The Integer Overflow vulnerability was disclosed by André Bargull privately to Google last month, earning him $5,000 in rewards, while the other two vulnerabilities — CVE-2020-6407 and CVE-2020-6418 — were identified by experts from the Google security team.

Google has said CVE-2020-6418, which stems from a type confusion error in its V8 JavaScript rendering engine, is being actively exploited, although technical information about the vulnerability is restricted at this time.

The search giant has not disclosed further details of the vulnerabilities so that it gives affected users enough time to install the Chrome update and prevent hackers from exploiting them.

A successful exploitation of the integer overflow or out-of-bounds write flaws could allow a remote attacker to compromise a vulnerable system by tricking the user into visiting a specially crafted web page that takes advantage of the exploit to execute arbitrary code on the target system.

It’s recommended that Windows, Linux, and macOS users download and install the latest version of Chrome by heading to Help > “About Chrome” from the settings menu.

#AcePCHelpDesk report ……………..Published: Feb.26: 2020:

Editor says #AceNewsDesk reports are provided at https://t.me/acenewsdaily and all our posts, links can be found at here Live Feeds https://acenewsroom.wordpress.com/ and thanks for following as always appreciate every like, reblog or retweet and free help and guidance tips on your PC software or need help & guidance from our experts AcePCHelp.WordPress.Com

JUST IN: Git Hub: ProtonVPN is the first VPN provider to open source apps on all platforms (Windows, macOS, Android, and iOS) and undergo an independent security audit according to Android Security Malware #AcePCHelpDesk report

ProtonVPN is the first VPN provider to open source apps on all platforms (Windows, macOS, Android, and iOS) and undergo an independent security audit
https://github.com/ProtonVPN/android-app
https://t.me/androidMalware/620
Android Security & Malware, [Jan 22, 2020 at 15:34]
#AcePCHelpDesk report …………Published: Feb.01: 2020:
Editor says #AceNewsDesk reports are provided at https://t.me/acenewsdaily and all our posts, links can be found at here Live Feeds https://acenewsroom.wordpress.com/ and thanks for following as always appreciate every like, reblog or retweet and free help and guidance tips on your PC software or need help & guidance from our experts AcePCHelp.WordPress.Com

Hacker leaks passwords for more than 500,000 servers, routers, and IoT devices — Latest news

The list was shared by the operator of a DDoS booter service.

via Hacker leaks passwords for more than 500,000 servers, routers, and IoT devices — Latest news

Here are 5 ways to protect your privacy on smart devices —

Here are a few things you can do to minimize their eavesdropping potential of smart devices.

via Here are 5 ways to protect your privacy on smart devices —

Linux Foundation Survey Proves Open-Source Offices Work Better #AcePCHelpDesk reports

DevNull127 shares some of the key findings from The New Stack’s second annual “Open Source Programs in the Enterprise” survey, co-sponsored by VMware and in partnership with The Linux Foundation’s TODO Group: Companies with initiatives to promote open source overwhelmingly say these efforts are improving their companies’ software practices.

The results [of the survey] show that proponents of free and open-source software (FOSS) have moved to the next phases of open source adoption, widening its usage within the enterprise while keeping alive the spirit and ethos of non-commercial software communities. 69% are at least sometimes using open-source code in commercial products, with that figure jumping to 83% among technology companies — within three percentage points of the same survey’s results last year: And most (79%) Internet-scale technology companies with more than 10,000 employees already have an open-source management program, which is a slight increase compared to last year. That stability shows that the next big changes in enterprise open source will instead involve its scope and how much enterprises emphasise giving back to the community. Increased innovation rose to become the most cited benefit of open-source programs.

Participants said development speed, technology flexibility, and total cost of ownership are the top three. Lower support costs were also seen as a likely benefit: But open-source programs are also improving how software development is handled. In response to one of our new questions, 81% of respondents say their program has had a positive impact on their company’s software practices. In an open-ended follow-up question, code reviews and license-compliance processes were repeatedly cited as specific practices that were improved as a direct result of the program.

Furthermore, code quality and reduced costs were often cited as specific benefits coming from improved software practices: While “quality” is often hard to define, many respondents say newly-instituted code reviews have been a specific positive impact on their company’s software practices.

#AcePCHelpDesk reports ……………Published: Sept.14: 2019:

Editor says #AceNewsDesk reports & #Brittius says are provided by Sterling Publishing & Media News Chat https://t.me/joinchat/Di_0I1O9-Gz1ogusgUArog and all our posts, links can be found at here Live Feeds https://acenewsroom.wordpress.com/ Ace News Services Posts https://t.me/AceSocialNews_Bot and thanks for following as always appreciate every like, reblog or retweet and free help and guidance tips on your PC software or need help & guidance from our experts AcePCHelp.WordPress.Com or you can follow our breaking news posts on AceBreakingNews.WordPress.Com or become a member on Telegram https://t.me/acebreakingnews all private chat messaging on here https://t.me/sharingandcaring

JUST IN: Adobe today released its monthly software updates to patch a total of 87 security vulnerabilities in its Adobe Acrobat and Reader, Flash Player and Media Encoder, most of which could lead to arbitrary code execution attacks or worse #AcePCHelpDesk reports

#AcePCHelpReport – May.14: None of the flaws patched this month in Adobe products has been found exploited in the wild: Out of 87 total flaws, a whopping number of vulnerabilities (i.e., 84 in total) affect Adobe Acrobat and Reader applications alone, where 42 of them are critical and rest 42 are important in severity.

Upon successful exploitation, all critical vulnerabilities in Adobe Acrobat and Reader software lead to arbitrary code execution, allowing attackers to take complete control over targeted systems: Adobe has released updated versions of Acrobat and Reader software for Windows and macOS operating systems to address these security vulnerabilities.

The update for Adobe Flash Player, which will receive security patch updates until the end of 2020, comes this month with a patch for just one security vulnerability( CVE-2019-7837), which is critical in severity and affects Windows, macOS, Linux, and Chrome OS versions of the software: The third Adobe product that received patches this month is Media Encoder, a powerful tool that allows users to compress audio and/or video files to be played back across browsers and devices.

Adobe has released Media Encoder version 13.1 that addresses two security vulnerabilities, one of which is critical (CVE-2019-7842) and leads to remote code execution while the second is an information disclosure flaw: Users of affected Adobe software for Windows, macOS, Linux, and Chrome OS are urged to update their software packages to the latest versions as soon as possible.

If your system hasn’t yet detected the availability of the new update automatically, you should manually install the update by choosing “Help → Check for Updates” in your Adobe Acrobat and Reader software.

#AcePCHelpDesk report ………..Published: May.14: 2019:

Editor says #AceNewsDesk reports & #Brittius says are provided by Sterling Publishing & Media News and all our posts, links can be found at here Live Feeds https://acenewsroom.wordpress.com/ Ace News Services Posts https://t.me/AceSocialNews_Bot and thanks for following as always appreciate every like, reblog or retweet and free help and guidance tips on your PC software or need help & guidance from our experts AcePCHelp.WordPress.Com or you can follow our breaking news posts on AceBreakingNews.WordPress.Com or become a member on Telegram https://t.me/acebreakingnews all private chat messaging on here https://t.me/sharingandcaring

JUST IN: Microsoft Blocks Windows 10 May 10 2019: Update on PCs that use USB storage or SD Cards #AcePCHelpDesk reports

#AcePCHelpDesk report – Apr.24: Microsoft has published a support document today warning Windows 10 users that the impending May 2019 Update may not install on their systems if they use external USB storage devices or SD cards.

From a report: The OS maker cited problems with “inappropriate drive reassignment” as the main reason for blocking the May 2019 Update. “Inappropriate drive reassignment can occur on eligible computers that have an external USB device or SD memory card attached during the installation of the May 2019 update,” the company said. “For this reason, these computers are currently blocked from receiving the May 2019 Update.”

#AcePCHelpDesk report ………..Published: April.24: 2019:

Editor says #AceNewsDesk reports & #Brittius says are provided by Sterling Publishing & Media News and all our posts, links can be found at here Live Feeds https://acenewsroom.wordpress.com/ Ace News Services Posts https://t.me/AceSocialNews_Bot and thanks for following as always appreciate every like, reblog or retweet and free help and guidance tips on your PC software or need help & guidance from our experts AcePCHelp.WordPress.Com or you can follow our breaking news posts on AceBreakingNews.WordPress.Com or become a member on Telegram https://t.me/acebreakingnews all private chat messaging on here https://t.me/sharingandcaring