New Delhi: A team of Google security researchers has revealed a zero-day vulnerability in the Microsoft Windows operating system that is under active exploitation.According to Google project Zero technical lead Ben Hawkes, the zero-day vulnerability is expected to be patched on November 10."In addition to last week's Chrome/freetype 0day (CVE-2020-15999), Project Zero also detected and reported the Windows kernel bug (CVE-2020-17087) that was used for a sandbox escape," Hawkes said in a tweet on Friday. "Currently we expect a patch for this issue to be available on November 10," he added.November 10 is also the date of Microsoft's next security Patch."We have confirmed with the Director of Google's Threat Analysis Group, Shane Huntley that this is targeted exploitation and this is not related to any US election related targeting," Hawkes informed.The Google Project Zero team notified Microsoft last week and gave the company seven days to patch the bug, reports ZDNet.The zero-day bug in … [Read more...] about New zero-day bug puts Windows OS at threat, reveals Google
Projection google maps
“The project uses technologies such as machine learning, augmented reality and digitisation with high-definition robotic cameras, to showcase these special works of art in a magical new way. On the Google Arts & Culture app, online viewers can experience the first augmented reality-powered art gallery designed with traditional Indian architecture, and explore a life-size virtual space where you can walk up to a selection of miniature paintings,” the statement said. … [Read more...] about National Museum’s miniature paintings on Google Arts & Culture app
New Delhi: A security researcher has found a vulnerability in the download feature of Facebooks Android app that could be exploited to launch remote code execution (RCE) attacks. The social networking giant awarded the researcher $10,000 for finding the bug.Facebook's Android app uses two methods of downloading files from a group -- a built-in Android service called DownloadManager and a second method called Files Tab.Security researcher Sayed Abdelhafiz discovered a path traversal flaw in the second method. "I discovered an ACE on Facebook for Android that can be triaged through a download file from group Files Tab without opening the file," he said in a post on Medium.The vulnerability was in the second method. While security measures were implemented on the server side when uploading the files, it was easy to bypass those. "First idea that came to my mind was to use path traversal to overwrite native libraries which will lead to executing arbitrary code," Abdelhafiz said.Abdelhafiz … [Read more...] about Facebook awards $10K for finding bug in its Android app
Dwelling at length on Google’s mission and philosophy, he said the mission was to organise the world’s information and make it universally accessible and useful while as part of its philosophy, Google had found 10 things to be true: Focus on the user and all else will follow; It is best to do one thing really, really well; fast is better than slow; democracy on the web works; you don’t need to be at your desk to need an answer; you can make money without doing evil; there’s always more information out there; the need for information crosses all borders; you can be serious without a suit; that great just isn’t good enough. … [Read more...] about Use technology in a prudent manner: expert
While Chinese troops withdrew 2 kilometre from Patrolling Point 14 (PP14) in the Galwan heights, which was the site of the clashes on 15 June 2020, Indian troops also had to withdraw 2 kilometreinto their own territory onto the river-valley floor. The PLA remain on the heights. … [Read more...] about Did Modi ignore Xi’s betrayal in Ladakh?