Steve Gibson of GRC discusses the latest in security issues with Windows 10 AU (Anniversary Update), Apple’s Bug Bounty policy change, new Android takeover flaws, another way of tracking web visitors, hackers spoof Tesla auto sensors, Firefox, LastPass, and issues HTTP.
Details of this episode with links and more information are found in the Security Now #572 show notes. A transcript and audio versions of the show are also available.
There are known issues with the Windows Anniversary Update with McAfee and Avast antivirus software. Edge browser is hanging on websites that have lots of ads. There are reports of damages to Dual boot partitions. The update also comes with a new bundle of crapware such as Solitaire, Candy Crush Soda Saga, Pandora, Asphalt 8, Age of Empires Castle Siege, FarmVille 2, and Minecraft.
Windows 10 AU re-enables all privacy related features if previously disabled by users. Group Policy editor and certain policies were removed from Window 10 Pro AU and the corresponding registry keys no longer work either. So Pro users have no ability to make Group Policy changes. Examples of changes are users are no longer able to disable, crapware installs from third parties, cannot disable Cloud Content features, turn off Windows Tips, no longer customize logon screen, or disable the Windows Store.
Apple will begin offering cash bounties of up to $200,000 to researchers who discover vulnerabilities in its products.
There is lots of security news from Defcon and Black.
There are four newly disclosed ‘Quadrooter’ flaws affect over 900 million Android phones.
EFS Network Management encourages administrators and users to check the latest video podcast of Security Now.
If you need tech support with a security issue please open a EFS Network Management Support Request and we will take a look at the issue or you can contact us for help.