Fake Spectre and Meltdown patch spreads Smoke Loader malware

Cyber-criminals used the fake website of the German Federal Office for Information Security (BSI) to distribute Smoke Loader malware disguised as security patches for Meltdown and Specter.

No more Windows security updates for devices with incompatible antiviruses

Microsoft has added important note on the support page describing incompatibilities between antivirus (AV) products and the recent Windows Meltdown and Spectre patches.

Performance impact of Spectre and Meltdown patching on Windows Systems

Windows 7 and Windows 8 users running older processors will be most affected by performance issues.

VMware released patches for three critical vulnerabilities

Vulnerabilities affected vSphere Data Protection (VDP) and allowed authentication bypass, arbitrary file upload and path traversal.

HP silently installs telemetry client on its customers’ PC

HP installs a telemetry program on the users’ devices without informing or asking their permission.

Google will block third-party software from injecting code into Chrome

Google says that changes will take place in three main phases over the 14 months from April 2018.

Skype will discontinue the option to sign in via Facebook

Microsoft announced that it plans to disable the use of Facebook accounts to sign in to Skype in January 2018.

Intel identified several security vulnerabilities in Management Engine, Server Platform Services and Trusted Execution Engine

In response to issues identified by external researchers, Intel performed a security review of Management Engine (ME), Server Platform Services (SPS) and Trusted Execution Engine (TXE) and identified several security vulnerabilities.

Microsoft will end support for Word, PowerPoint and Excel Viewers soon

Microsoft has confirmed that it will discontinue support for Word, Excel and PowerPoint Document Viewers and wants the users to start using the Windows 10 apps.

Emotet banking malware spread through one of the McAfee services

The service is meant to protect against phishing attacks and malware from links in emails was used to spread the malicious Emotet.