Skip to main content

Microsoft

Microsoft AI can detect security flaws with 99% accuracy

posted onApril 20, 2020
by l33tdawg
Credit: IT Pro

Microsoft has released an artificial intelligence (AI)-powered tool to help developers categorise bugs and features that need to be addressed in forthcoming releases.

The software giant’s machine learning system classifies bugs as security or non-security with a 99% accuracy, and also determines whether a bug is critical or non-critical with a 97% accuracy rating.

Microsoft warns hospitals about VPN cyberattacks during coronavirus

posted onApril 1, 2020
by l33tdawg
Credit: CNet

Up to 80% of Americans are on government-mandated lockdowns, forcing many of them to work from home while they keep away from the office to avoid spreading the novel coronavirus. Many of these people use technology to access their work called virtual private networks, or VPNs. And now Microsoft says that those companies -- and specifically health care workers -- need to be on the lookout for a different breed of threats that come from them.

Microsoft to end investments in facial recognition firms after AnyVision controversy

posted onMarch 27, 2020
by l33tdawg
Credit: Wikipedia

Microsoft says it will no longer invest in third-party facial recognition companies following a controversy around its funding of Israeli startup AnyVision, which critics and human rights activists say powered a surveillance program in the West Bank following an NBC News report about the company’s relationship with the Israeli government.

No, Microsoft isn’t killing the Control Panel off just yet

posted onMarch 27, 2020
by l33tdawg
Credit: Arstechnica

You may have seen dark rumors around the Web that Microsoft is about to kill off the classic Control Panel. Rest assured, friend, we were as horrified as you are—but on more careful inspection, this seems not to be the case.

A new set of Feature IDs popped up in the latest build of Windows 10—HideSystemControlPanel, SystemControlPanelFileExplorerRedirect, and SystemControlPanelHotkeyRedirect. This looks grim—but fortunately, developer Rafael Rivera discovered they really only apply to the System applet.

Guy who named 'BlueKeep' Windows flaw joins Microsoft Threat Protection

posted onMarch 4, 2020
by l33tdawg
Credit: Wikipedia

Kevin Beaumont, the UK cybersecurity expert who named the wormable Windows BlueKeep bug, is joining Microsoft Threat Protection.

Beaumont, a widely quoted security expert who's run large security operations centers, has offered insights from the trenches into new attacks via his popular DoublePulsar blog and Twitter for the past few years, covering issues including WannaCry, NSA exploits, the rise of malicious Office macros, and BlueKeep.

Microsoft’s first-ever Android Phone, the Surface Duo, spotted in the wild

posted onFebruary 11, 2020
by l33tdawg
Credit: Arstechnica

Microsoft's first-ever Android phone, and its first self-branded phone, is slowly becoming a reality. The Surface Duo, which was announced a full year before it was planned to release to market, was recently spotted in the wild. Twitter user Israel Rodriguez spotted a person with a prototype device on the Vancouver subway and snuck a spy video out into the world.

Hacker demonstrates Remote Code Execution exploit for Windows Remote Desktop Gateway

posted onJanuary 28, 2020
by l33tdawg
Credit: Beta News

A self-described "reverser/pwner [and] Windows kernel hacker" has demoed a working exploit for two recently discovered vulnerabilities in Windows Remote Desktop Gateway (RD Gateway).

The exploit takes advantage of the CVE-2020-0609 and CVE-2020-0610 vulnerabilities which have already been shown to make a denial of service attack possible. Now Luca Marcelli has shown how the same vulnerabilities can be exploited in a Remote Code Execution attack.

Experts: Windows Feature Can Be Used as Ransomware

posted onJanuary 24, 2020
by l33tdawg
Credit: Flickr

Ransomware attackers could turn a key Windows security tool against the system, according to new research. The tactic could also evade leading security tools.

The research from SafeBreach Labs covered "EFS", otherwise known as Encrypting File System. EFS was released as far back as Windows 2000 (in the year 2000), and is somewhat similar to Bitlocker. The main difference between the two is that Bitlocker can encrypt an entire volume, while EFS can encrypt individual files and folders.

Microsoft Looms Over the Privacy Debate in Its Home State

posted onJanuary 23, 2020
by l33tdawg
Credit: Wired

Two Microsoft employees sat opposite one another in a Washington State Senate hearing room last Wednesday. Ryan Harkins, the company’s senior director of public policy, spoke in support of a proposed law that would regulate government use of facial recognition. “We would applaud the committee and all of the bill sponsors for all of their work to tackle this important issue,” he said.