0 기록
We found results matching "0" in 0 ms

Kaspersky Product's Vulnerability is Denied

Apr. 10, 2020

Cybersecurity company Kaspersky Lab is reported to have vulnerabilities in its software, exposing its application programming interface to website abuse.

 

Security holes were first documented by cybersecurity researcher Wladimir Palant and found in software like Kaspersky Internet Security 2019.

 

Palant said it was the first time he exposed vulnerabilities and security concerns in December last year. Although Kaspersky has fixed some of the issues in a July 2019 update, other vulnerabilities remain and new vulnerabilities have been discovered since then.

 

"When I tested the new Kaspersky Internet Security 2020, extracting the secret from the injected scripts was still trivial and the biggest challenge was adapting my proof-of-concept code to changes in the API calling convention," Palant said on ZDNet. " To be honest, I can't blame the Kaspersky developers for not even trying. I think defending their scripts in an environment they can't control is a waste."

 

Kaspersky questioned this claim and said in a blog post that Palant's security concerns raised in the web protection component of his products and product extensions for Google Chrome have already been resolved.

 

Kaspersky acknowledged that "whatever the severity of preventive measures, small buggies can infiltrate, and no software product in the world can completely eliminate them during the preventive phase." But vulnerabilities in software provided by a cybersecurity company never look good.

 

"Antivirus and other security technologies are an extremely valuable target," Craig Young, a cybersecurity researcher with the Cybersecurity Exposure and Vulnerability Research Team at Tripwire Inc., told SiliconANGLE a common target for controversial exploitation because generally they have a lot of access and handle dangerous entrances with minimal user interaction. "

 

Young said he was generally against the use of technologies that intercept and modify web traffic. But he added: "The fact is, there are too many ways it can go wrong, and often the perceived security benefits are outweighed by the considerable risk they represent."

 

Kaspersky has been the subject of tragedies in the past, which have been prohibited from providing services to the US government.

 

Bzfuture shares software news and advice on big data software and platforms. Don't forget to keep an eye on our weekly newsletter for more information.Get all the software products you need from the bzfuture online retail store. Connect with our customer service online.

닫음 Bzfuture 로그인을 환영합니다.

아직 가입하지 않았습니까?   Sign Up Now

제3자 계정으로 로그인 하기:

Open the bzfuture APP

Scan The code to login

닫음Bzfuture 가입을 환영합니다.

  • 이메일 주소*

    Please enter a valid Email.

  • Mobile Phone*

    Please enter a valid mobile phone.

  • Verification Code*

    Get Verification Code

    The code will be invalid in 5 minutes

  • 비밀번호*

    5 to 16 letters, numbers, and special characters.

  • 비밀번호 확인*

  • * 이름*

  • ~ 내용을 읽고 이에 동의합니다. 
    Bzfuture 행사, 콘테스트 및 뉴스 레터 구독

Bzfuture계정이 있습니까?   지금 로그인하기

제3자 계정으로 로그인 하기

닫음비밀번호를 잊어버렸습니다.

닫음

Prompt T698563:

The programe has been successfully submitted to the system

닫음

Prompt T698563:

The programe has been successfully submitted to the system

닫음

Prompt T698563:

The programe has been This is a warning ?

닫음Successful Registration

Click here to set up your User Center

Close보안 확인