Microsoft announces new OneDrive for Business feature: Files Restore

New feature allows business customers to restore accidentally deleted or compromised files, as well as view the history of file changes in their OneDrive.

ISC has released security updates for BIND

Vulnerability CVE-2017-3145 affects all versions of BIND since 9.9.0, released in 2000, and can lead to denial-of-service and crash.

Fake Spectre and Meltdown patch spreads Smoke Loader malware

Cyber-criminals used the fake website of the German Federal Office for Information Security (BSI) to distribute Smoke Loader malware disguised as security patches for Meltdown and Specter.

No more Windows security updates for devices with incompatible antiviruses

Microsoft has added important note on the support page describing incompatibilities between antivirus (AV) products and the recent Windows Meltdown and Spectre patches.

Performance impact of Spectre and Meltdown patching on Windows Systems

Windows 7 and Windows 8 users running older processors will be most affected by performance issues.

VMware released patches for three critical vulnerabilities

Vulnerabilities affected vSphere Data Protection (VDP) and allowed authentication bypass, arbitrary file upload and path traversal.

HP silently installs telemetry client on its customers’ PC

HP installs a telemetry program on the users’ devices without informing or asking their permission.

Google will block third-party software from injecting code into Chrome

Google says that changes will take place in three main phases over the 14 months from April 2018.

Skype will discontinue the option to sign in via Facebook

Microsoft announced that it plans to disable the use of Facebook accounts to sign in to Skype in January 2018.

Intel identified several security vulnerabilities in Management Engine, Server Platform Services and Trusted Execution Engine

In response to issues identified by external researchers, Intel performed a security review of Management Engine (ME), Server Platform Services (SPS) and Trusted Execution Engine (TXE) and identified several security vulnerabilities.