Search the Community
Showing results for tags 'critical'.
Found 2 results
after doing some research i ended up on this conclusion: some companies using CoinHive to mine in your browser without your knowledge, how i knew it ? https://github.com/AliasIO/Wappalyzer/issues/1807 i have an addon called WAPPALYZER it shows what tech your site is made, i noticed something is confusing all websites have CoinHive plugin, EVEN GOOGLE i was WHAT! no way its a bug i went there to GITHUB i opened an issue someone told me maybe iam infected somehow with it, i was hmm that seems logic on my computer i have those antiviruses:(both are paid licenses) Malwarebyte ESET Smart Security iam reporting that neither anyone noticed it but this is a big malware issue they are using COINHIVE API to USE your CPU to MINE! i scanned many times i disabled all my plugins nothing!!!
Hi! A few days ago, when doing a Vulnerability scan with my Kaspersky IT security, I was warned multiple times by a critical vulnerability in Chrome impacting all versions BEFORE 58.0.3029.96. A step by step solution was not provided, just to update to the latest stable version. To quote their warning (one among many, because when I checked today, several warnings have been already removed but this one I could still find): "Update to the latest version. File with name old_chrome can be still detected after update. It caused by Google Chrome update policy which does not remove old versions when installing updates. Try to contact vendor for further delete instructions or ignore such kind of alerts at your own risk." The whole description can be found under the link: KLA11015 RACE CONDITION VULNERABILITY IN GOOGLE CHROME The impact (or exploit there) is shown to be: ACE - Arbitrary Code Execution (though others were also mentioned in the posts, which I can't find today anymore); This is way above my level of knowledge, but I just wanted to ask, if Anti-Exploit Beta can block this and similar threats. I find this very important, because hundreds of millions of people are using this browser (including me), not knowing, that there are several critical vulnerabilities in it and no definitive solution is provided by Google. I tried to attach a cropped screenshot from Kaspersky vulnerability report, that contains some info about which files in Chrome app are impacted by all this, but was unsuccessful (received error code -200) Thank you in advance for a more detailed explanation and also a possible solution. Regards. Denis