February 11, 2014: As announced, Microsoft has released their February Security Bulletins. A total of 7 bulletins have been released. Affected software includes Microsoft Windows, IE, .NET Framework, and Security Software. 4 of the bulletins are rated as 'Critical' and carry a potential impact of remote code execution. Learn More
January 14, 2014: As announced, Microsoft has released their January Security Bulletins. A total of 4 bulletins have been released. Affected software includes Microsoft Windows, Office, and Server Software. 1 of the bulletins is rated as 'Important' and carries a potential impact of remote code execution. Learn More
From McAfee’s first Cyber Defense Center (CDC) in Dubai, we closely monitor threats and activities in Europe and the Middle East. Since the Center’s official launch in September 2013, we have seen quite a few interesting trends, especially in the Persian Gulf region. Many of the activities spotted are related to hacktivism, cybercrime, or regional […]
The post McAfee Cyber Defense Center Zooms In on Middle East appeared first on McAfee.
Android users usually download and install applications from the Google Play store through several interactions with the service–including viewing the app’s description and granting permission requests by the app. This confirmation procedure helps us avoid installing malicious and potentially unwanted apps. However, McAfee recently found a suspicious app on Google Play that almost automatically downloads, […]
The post Automatic App Installation from Google Play Poses Big Risk appeared first on McAfee.
While analyzing a recent Internet Explorer zero-day vulnerability, CVE-2014-0322 (containing the Flash sample hash b9c9dab0fd30418884800afebbaba4d99f4526ef0c9a47972a20ab20fed0a06d), we noticed the exploit makes an unorthodox call to ZwProtectVirtualMemory to bypass data execution prevention. What is different about this call? The argument(s) of ZwProtectVirtualMemory are placed in an unusual manner. Typically arguments that are pointer variables belonging to the […]
The post Internet Explorer Zero Day Offers Unusual Case Study appeared first on McAfee.