After the dns + evilgrade fiasco I hope that insecure auto update functions are taken as serious as they should always have been Back in 2006 I warned about it when reporting that Zango Adware was downloading and executing udaptes without checking for authenticity. Zango fixed it eventually, my scenario I illustrated back then however was seen as unlikely event. Fast Forward 2 years - oops.
What is of more concern is that adware update process seems to be more "secure" in 2006 than adobe acrobat is in 2008. ouch.
Crooks Bypassed Google’s Email Verification to Create Workspace Accounts,
Access 3rd-Party Services
-
Google says it recently fixed an authentication weakness that allowed
crooks to circumvent email verification needed to create a Google Workspace
account, ...
8 hours ago
0 comments
Post a Comment