Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
Now, Microsoft spots remote security flaw in Google Chrome

Now, Microsoft spots remote security flaw in Google Chrome

Google Chrome, MicrosoftSan Francisco : Microsoft’s Windows security team has discovered a remote security flaw in Google Chrome that can be exploited by hackers.

“Our discovery of ‘CVE-2017-5121’ indicates that it is possible to find remotely exploitable vulnerabilities in modern browsers. Chrome’s relative lack of remote code execution (RCE) mitigations means the path from memory corruption bug to exploit can be a short one,” wrote Jordan Rabet, member of the Microsoft Offensive Security Research team, in a blog post late on Thursday.

“Chrome’s process for servicing vulnerabilities can result in the public disclosure of details for security flaws before fixes are pushed to customers,” Rabet added.

According to an Engadget report on Friday, Google immediately posted the fix for the remote flaw on GitHub.

“While the fix for this issue doesn’t out the vulnerability, according to Microsoft, that hasn’t always been the case. Microsoft believes that a fix should be applied before they are public knowledge,” the report added.

The Microssoft-Google rivalry over security flaws in their products is not new.

Last year, Google disclosed a major Windows bug before Microsoft was ready to patch it.

“It irritated the company so much that Windows chief Terry Myerson authored a blog post criticising Google for not disclosing security vulnerabilities responsibly,” The Verge reported.

After testing the latest Windows 10 “Fall Creators Update” over the past six months, Microsoft has now released the latest edition to secure over 500 million Windows 10 devices globally, starting with new machines first.

Microsoft wants users to keep their software up to date in order to avoid another series of deadly cyber attacks such as WannaCrypt that impacted worldwide PCs that were running an outdated Microsoft software.

Two new ransomware families like “WannaCrypt” and “Petya” targeted dated Windows operating systems and created havoc across the world, including at some places in India.

Now, with the official rollout of Windows 10 “Fall Creators” update, Microsoft wants to stay one step ahead in identifying and preventing security threats.

—IANS

VMware to enable customers manage Google’s Chrome devices

VMware to enable customers manage Google’s Chrome devices

VMware Workspace ONEBengaluru : Cloud infrastructure and business mobility leader VMware on Wednesday announced it had become the first unified endpoint management (UEM) provider with Google’s Chrome device management capabilities.

VMware Workspace ONE, a digital workspace platform powered by VMware ‘AirWatch UEM’ technology, would enable the customers unify management of Chrome devices, alongside all other endpoints, from a single console.

“As Chrome OS continues to gain momentum, our customers are eager to manage these devices consistently along with all other endpoints, including mobile devices,” said Sumit Dhawan, Senior Vice President and General Manager, End-User Computing, VMware.

“Using Workspace ONE, our customers will be able to securely manage the lifecycle of Chromebooks along with all their other endpoints giving them better security and a consistent user experience across all devices,” he added in a statement.

With new enterprise-ready capabilities from ‘Chrome Enterprise License’, organisations will be able to deliver device policies using customisable assignment of groups.

“Our collaboration with VMware will help us deliver a seamless deployment and management experience, making Chrome devices available across more teams,” added Rajen Sheth, Senior Director of Product Management for Chrome OS at Google.

Chrome device users will even be able to access full Windows desktops and applications and use these devices as next-generation thin clients, helping accelerate the adoption of Chrome devices in the enterprise.

‘Workspace ONE’ will be able to deliver a unified platform to both manage and deliver any app to Chrome devices.

—IANS