Search Results for “Liam Tung”


August 13, 2019
Liam Tung / ZDNet

Liam Tung / ZDNet  
Google Enables FIDO2 Fingerprint-Based Verification on Android 7 and Above Devices

Google is enabling fingerprint-based verification when visiting some Google services on one of its Pixel phones and will roll out the feature via a Google Play Services update to all Android 7 and above devices in the next few days. Google announced in February that Android 7 and above were now certified under the FIDO2 standard which, along with companion standard WebAuthn, should reduce users’ reliance on passwords.

September 28, 2019
Liam Tung / ZDNet

Liam Tung / ZDNet  
Cisco Urges Admins to Update Cisco IOS, IOS XE After Pushing Out Patches for a Dozen High-Severity Vulnerabilities Including One With 9.9 CVSS Score

As part of its twice-yearly software security advisory bundle for Cisco IOS and IOS XE, Cisco has disclosed over a dozen high-severity vulnerabilities affecting the widely deployed Cisco IOS and IOS XE network automation software, including one affecting its industrial routers and grid routers. One of the bugs, in the IOx application environment for IOS, tracked as CVE-2019-12648,  has a CVSS 3.0 score of 9.9 out of a possible ten and affects large network operators that use Cisco’s 800 Series Industrial Integrated Services Routers and its 1000 Series Connected Grid Routers. The company is urging admins to review which versions of Cisco IOS and IOS XE their devices are running to ensure they are updated to versions that address 13 separate flaws. Cisco is also warning customers to disable an L2 traceroute feature in IOS for which there is public exploit code.

October 8, 2019
Liam Tung / ZDNet

Liam Tung / ZDNet  
Opera 64 Offers Users Improved Privacy Protections From Online Tracking Which It Says Can Speed Browsing by Almost 20%

Browser maker Opera is releasing Opera 64 to the stable channel, offering users improved privacy protections from online tracking. Opera is shipping with a new privacy setting that allows users to toggle on the Block Trackers feature alongside the existing built-in ad blocker, which it says can speed up web browsing by almost 20% because web trackers make websites slower to load. Opera is using the EasyPrivacy Tracking Protection List for its tracker blocker, which contains a list of known tracking scripts and blocks them.

April 16, 2019
Liam Tung / ZDNet

Liam Tung / ZDNet  
Microsoft Confirms That Its Latest Patch Tuesday Updates Cause Performance Issues, Reboot Failures Due to Clash With Various Antivirus Tools

Numerous reports claim that the Patch Tuesday updates issued for Windows 7, Windows 8.1, Windows Server 2008 R2, and Windows Server 2012 on April 9 have caused serious performance issues for users, with the issue appearing to affect systems running various antivirus tools. Many users reported that their machines were failing to boot after installing the security-only and monthly updates. Avast and Avira separately confirmed in support documents that these cumulative updates have caused issues for their customers. Microsoft has now confirmed that there is an antivirus clash that affects Windows 10 version 1809 in relation to ArcaBit, a little-known Polish antivirus vendor, as well as boot problems affecting Avast for Business, Avast CloudCare, and AVG Business Edition on Windows 7. Avast has released ’emergency updates’ to fix this problem for customers and details the procedures to resolve problems in a support note.

Related: WinBuzzer, Infosecurity Magazine, HotHardware.com, WCCFtech, PCWorld, Tom’s Hardware, Context Blog, Appuals.com, Softpedia News, DigitalMunition, PC World, Microsoft, Avast


June 18, 2019
Liam Tung / ZDNet

Liam Tung / ZDNet  
SACK Flaws in Linux and FreeBSD Kernels Can Lead to Systems Crashing, Organizations Running Large Fleets of Production Linux Computers Urged to Patch

Four vulnerabilities in Linux and FreeBSD kernels could lead to systems crashing or consuming too many resources and consequently slowing down, Jonathan Looney, an engineering manager at Netflix and FreeBSD developer, discovered. The most serious of the flaws, CVE-2019-11477, is called SACK Panic, referring to the Linux kernel’s TCP Selective Acknowledgement (SACK) capabilities and can be exploited to trigger a kernel ‘panic’ that could crash a machine, leading to a denial of service. The other bugs are CVE-2019-11478 or CVE-2019-11478, which affects Linux 4.15 and below, CVE-2019-5599, another SACK Slowness bug that affects FreeBSD 12, and CVE-2019-11479, which causes excess resource consumption. All the flaws have been patched and organizations running large fleets of production Linux computers are urged to patch immediately.

Related: Beta News, Security Affairs, The Daily Swig, SecurityWeek, Linux Security, fossBytes, The Next Web, Bleeping Computer, GitHub, Help Net Security