Security Alerts & News
by Tymoteusz A. Góral

#782 Symantec Antivirus products vulnerable to horrid overflow bug
Whoever thought loading an anti-virus engine into the Windows kernel was a good idea should finally have proof that they were completely and utterly wrong.

That proof has arrived from Tavis Ormandy of Google's Project Zero team, who discovered the Symantec Antivirus Engine was vulnerable to a buffer overflow when parsing malformed portable-executable (PE) header files.

"Such malformed PE files can be received through incoming email, downloading of a document or application, or by visiting a malicious web site," Symantec said in its advisory on the issue dubbed CVE-2016-2208.

"No user interaction is required to trigger the parsing of the malformed file."
Read more
#784 IBM scientists achieve storage memory breakthrough
#783 Banking trojan outwits Google VerifyApps scanner
#782 Symantec Antivirus products vulnerable to horrid overflow bug
#781 Groundbreaking gadget claims to fit in your ear and translate foreign languages in real-time
#780 Random number generator 'improved'
#779 Firefox tops Microsoft browser market share for first time
#778 Indian organizations targeted in Suckfly attacks
#777 Inside the million-machine clickfraud botnet
#776 Apple has fixed a bug that let hackers bypass iPhone lock screen
#775 Ukrainian hacker pleads guilty to insider trading in US
#774 Indefinite prison for suspect who won’t decrypt hard drives, feds say
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12