Windows Remote Assistance flaw could be exploited to steal sensitive files

This entry was posted in SecurityNews on March 21, 2018 by Inspector

A critical flaw in the Windows Remote Assistance tool allows someone you trust to take over your PC so they can help you fix a problem, and vice-versa.

A critical vulnerability in Microsoft’s Windows Remote Assistance (Quick Assist) feature affects all versions of Windows to date, including Windows 10, 8.1, RT 8.1, and 7. The flaw could be exploited by a remote attacker to steal sensitive files on the targeted machine.
Windows Remote Assistance tool allows someone you trust to take over your PC so they can help you fix a problem, and vice-versa.

The Windows Remote Assistance feature relies on the …read more

Via:: Security Affiars

Trending
Current
CSO
Did you Know?

Europol announces bust of “world’s biggest” dark web marketplace

Dark web servers are hard to find - but not impossible. [...]

S3 Ep15: Titan keys, Mimecast certs and Solarwinds [Podcast]

Latest episode. Listen now! [...]

Home schooling – how to stay secure

Whether you’re new to home schooling or an old hand, it’s worth taking a moment to ensure you’re doi [...]

Naked Security Live – HTTPS: do we REALLY need it?

Here's the latest Naked Security Live video talk - watch now, and please share with your friend [...]

Google Titan security keys hacked by French researchers

Researchers can now made software copies of Google's "unclonable" Titan security keys [...]

S3 Ep14: Money scams, HTTPS by default, and hardcoded passwords [Podcast]

Listen now! [...]

Apple Kills MacOS Feature Allowing Apps to Bypass Firewalls

Security researchers lambasted the controversial macOS Big Sur feature for exposing users' sens [...]

Google Boots 164 Apps from Play Marketplace for Shady Ad Practices

The tech giant removes 164 more offending Android apps after banning software showing this type of b [...]

Facebook: Malicious Chrome Extension Developers Scraped Profile Data

Facebook has sued two Chrome devs for scraping user profile data - including names, user IDs and mor [...]

Florida Ethics Officer Charged with Cyberstalking

Judge bars former Tallahassee city ethics officer from internet-connected devices after her arrest f [...]

Telegram Bots at Heart of Classiscam Scam-as-a-Service

The cybercriminal service has scammed victims out of $6.5 million and continues to spread on Telegra [...]

Cloud Attacks Are Bypassing MFA, Feds Warn

CISA has issued an alert warning that cloud services at U.S. organizations are being actively and su [...]

The biggest data breach fines, penalties and settlements so far

Sizable fines assessed for data breaches since 2019 suggest that regulators are getting more serious [...]

Security Recruiter Directory

Looking for a qualified candidate or new job? CSO's security recruiter directory is your one-st [...]

5 things to look for in an XDR solution

About 18 months ago, I first wrote about XDR (eXtended Detection and Response) in this post on CSO. [...]

17 types of Trojans and how to defend against them

Computer Trojans received their name from the infamous mythological horse. The Trojan’s basic missio [...]

BrandPost: Public Agencies Uncover Numerous Opportunities With Fortinet’s Fabric Management Center

State and local governments and educational (SLED) institutions face many of the same security chall [...]

Hashing explained: Why it's your best bet to protect stored passwords

What is hashing? Hashing is a cryptographic process that can be used to validate the authenticity an [...]

The NSA warns enterprises to beware of third-party DNS resolvers

The NSA warns enterprises to beware of third-party DNS resolvers l33tdawg Fri, 01/15/2021 - 22:50 [...]

A security researcher commandeered a country’s expired top-level domain to save it from hackers

A security researcher commandeered a country’s expired top-level domain to save it from hackers l33t [...]

US declares Xiaomi a “Communist Chinese military company,” bans investments

US declares Xiaomi a “Communist Chinese military company,” bans investments l33tdawg Fri, 01/15/2021 [...]

New MacBook Pro models will arrive this year with MagSafe, M1 successor

New MacBook Pro models will arrive this year with MagSafe, M1 successor l33tdawg Fri, 01/15/2021 - 2 [...]

How law enforcement gets around your smartphone’s encryption

How law enforcement gets around your smartphone’s encryption l33tdawg Fri, 01/15/2021 - 22:50 [...]

Hackers alter stolen regulatory data to sow mistrust in COVID-19 vaccine

Hackers alter stolen regulatory data to sow mistrust in COVID-19 vaccine l33tdawg Fri, 01/15/2021 - [...]

Protecting Your Cyber World With Real World Solutions

Protecting Your Cyber World With Real World Solutions

Windows Remote Assistance flaw could be exploited to steal sensitive files

A critical flaw in the Windows Remote Assistance tool allows someone you trust to take over your PC so they can help you fix a problem, and vice-versa.

January 2021
M	T	W	T	F	S	S
« Mar
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30	31