SoylentNews is people
SoylentNews
Arthur T Knackerbracket has found the following story:
Anyone running Chrome will want to update and restart their browser in order to make sure they have the latest build, as usual. Google has patched a bunch of flaws including a use-after-free() vulnerability (CVE-2019-13720) that was being actively exploited in the wild against victims. Make sure you're running version 78.0.3904.87 or higher for Windows, Mac, and Linux to be safe.
More technical details are here: essentially, a malicious JavaScript file on a webpage can exploit the vulnerability to potentially gain arbitrary code execution and install spyware and other horrible stuff on the computer. Kaspersky reckons the flaw was abused in an attempt to infect Chrome-using visitors of a Korean-language news website, in a campaign dubbed Operation WizardOpium.
We hope you've all patched your Windows systems for the BlueKeep RDP flaw, which can be exploited to achieve remote-code execution on vulnerable machines. It appears Monero-mining malware is spreading among un-patched boxes via the security flaw. Microsoft patched the bug way back in May.
Marcus Hutchins, with help from Kevin Beaumont, has detailed the spread of the BlueKeep-exploiting nasty here for Kryptos Logic.
All the more reason to ensure you're patched.
(Score: 2) by Mojibake Tengu on Tuesday November 05 2019, @07:16PM (1 child)
I don't believe to magical proprietary format on the internal hard drives, most probably a ZFS zpool with possibly gbde or Geli encryption under it.
Respect Authorities. Know your social status. Woke responsibly.
(Score: 2) by JoeMerchant on Tuesday November 05 2019, @07:42PM
Whatever it was, in 2006, none of the standard formats in Ubuntu or Cent would recognize the drive - and there was nothing in the documentation mentioning this "feature".
External drives connected to the server, predictably, were fine.
🌻🌻 [google.com]