Yusuf On SecuritySecurity news, opinion and advice

uTorrent bug, Google Project Zero uncovers

A Google researcher at Google Project Zero discovered a number of flaws in a well known peer-to-peer file sharing application.

The vulnerabilities “allow an attacker to infect a victim with malware or collect data on the users’ past downloads.”

I won’t repeat the content but you can read a technical explanation here or follow this link for a less geeky version of the whole story.

No mitigation is known so you should stop using the web version and the desktop app until a fix is released.

Join the discussion

Further reading

What will it take?

A great piece on what it will take to improve the safety of the connected world. Read it here.

Extended detection and response (XDR)

Extended detection and response (XDR) captures threat data from previously isolated security tools throughout the organizations tech stack to enable...

Log4j Vulnerabilities

Towards the end of November, a researcher from Alibaba discovered a fault (CVE-2021-44228) in a well known open-source logging library called...

Recent podcasts