Security Alerts & News
by Tymoteusz A. Góral

History
#2060 Google security researcher finds hole in ESET's Mac antivirus
Mac users utilizing ESET's endpoint antivirus are advised to update to version 6.4.168.0 as soon as possible in order to mitigate a serious issue that allows attackers to execute arbitrary code on their machines.

The issue, discovered by Google security researcher Jason Geffner, was caused by the usage of an old library inside ESET's antivirus source code.

Geffner says vulnerable versions of the ESET Mac antivirus used the POCO XML parser library version 1.4.6p1 from 2013-03-06, which in turn was forked from Expat XML parser library version 2.0.1 from 2007-06-05.

Recently, security researchers became aware of a vulnerability (CVE-2016-0718) in the Expat library that allowed for remote code execution via malformed XML content.

This Expat flaw trickled down to the ESET Mac antivirus, where developers had used POCO to parse XML content streams.
Read more
#2064 Web cache deception attack
#2063 Dridex’s cold war: enter AtomBombing
#2062 Decrypting after a Findzip ransomware infection
#2061 Filecode ransomware attacks your Mac – how to recover for free
#2060 Google security researcher finds hole in ESET's Mac antivirus
#2059 AWS goes down, and so do millions of websites, apps, and other services
#2058 AI learns to write its own code by stealing from other programs
#2057 Ransomware for dummies: Anyone can do it
#2056 Pretzel: Email encryption and provider-supplied functions are compatible (PDF)
#2055 Google Play apps infected with malicious iFrames
#2054 Is E2EMail a new beginning or the end for Google’s End-to-End?
#2053 Expanding protection for Chrome users on macOS
#2052 Password-manager apps for Android (security analysis)
#2051 Crypt0L0cker ransomware is back with campaigns targeting Europe
#2050 Yahoo says 32m user accounts were accessed via cookie forging attack
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12