Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google reveals Windows flaw being exploited by hackers, angering Micros


  • Please log in to reply
2 replies to this topic

#1 JohnC_21

JohnC_21

  • Members
  • 22,618 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:02:38 PM

Posted 01 November 2016 - 08:21 AM

Google and Microsoft are butting heads over the disclosure of vulnerabilities. On Monday, Google revealed a critical flaw in Windows after it gave Microsoft a ten-day window to warn the public about it.
 
Google posted about the zero-day vulnerability on its security blog, saying Microsoft had yet to publish a fix or issue an advisory about the software flaw.
 
"This vulnerability is particularly serious because we know it is being actively exploited," Google said. It lets hackers exploit a bug in the Windows kernel, via a win32k.sys system call, to bypass the security sandbox.
 
The search giant originally told Microsoft about the problem 10 days ago, on Oct. 21. It waited to say anything about it publicly so Microsoft could fix the problem first. But Google has a strict policy of giving vendors only seven days to either publish a patch or issue a warning about a flaw.
 
"Seven days is an aggressive timeline and may be too short for some vendors to update their products," Google said in a blog post in 2013. "But it should be enough time to publish advice about possible mitigations."

 

Article

 



BC AdBot (Login to Remove)

 


#2 TheJokerz

TheJokerz

  • Members
  • 283 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ohio
  • Local time:02:38 PM

Posted 01 November 2016 - 08:28 AM

That is a good find!  Thank you for sharing.  I think MS needs to up their game, things of this nature need not to be out in the wild IMO.


utl8q0-5.png


#3 JohnC_21

JohnC_21
  • Topic Starter

  • Members
  • 22,618 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:02:38 PM

Posted 01 November 2016 - 05:49 PM

Microsoft has singled out Sofacy, an APT group long thought to have ties to Russia’s military intelligence arm GRU, as the entity behind targeted attacks leveraging Windows kernel and Adobe Flash zero days in targeted attacks. The group, which Microsoft calls Strontium, is also known as APT28, Tsar Team and Sednit among other identifiers.
 
Microsoft said the zero day vulnerability, the existence of which along with limited details were disclosed on Monday by Google, will be patched Nov. 8. Google said yesterday it privately disclosed both zero days, which were used in tandem in these targeted attacks against unknown victims, to Microsoft and Adobe on Oct. 21. Adobe rushed an emergency patch for Flash Player on Oct. 26, while Microsoft had yet to acknowledge the vulnerability until Google’s disclosure. Microsoft was critical of Google’s action yesterday and reiterated its stance today in a post, providing some details on the vulnerability and attacks.

 

Article






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users