Remote access scams
Protect yourself Never give an unsolicited caller remote access to your computer.
Windows Security
RobbinHood Ransomware using Gigabyte driver to terminate security processes
In a new report, Sophos researchers have seen the RobbinHood attackers installing a known vulnerable GIGABYTE driver that has been cosigned by Microsoft and exploiting its vulnerability to disable Microsoft’s driver signature enforcement feature. Once disabled, they can install a custom malicious kernel driver that is used to terminate antivirus and security software processes. More … Read more
December 2019 Patch Tuesday Fixes Win32k Zero-day
Microsoft’s December 2019 Patch Tuesday, which means it is your job to be nice to Windows administrators everywhere and not to take it personal if they are a bit grouchy today. With the release of the December 2019 security updates, Microsoft has released 2 advisories and updates for 36 vulnerabilities. Of these vulnerabilities, 7 are classified as Critical, … Read more