Skip to main content
Tag

keylogger

|||

Third-Party Patch Update: September 2018

By News, Patch Management

Virobot Will Return

Cybersecurity firm Trend Micro has identified a new malware, Virobot. While it doesn’t appear to be connected to a previous strain of ransomware, it uses familiar techniques.

However, Virobot is ransomware, keylogger, and botnet all in one.

The ransomware infects the device and locks it down. While waiting for the ransom payment, it can then log key strokes, pull down additional ransomware to install, and use the device as a bot to spread itself.

As of the writing of this article, the Virobot C&C server was down. Thanks to previous examples, we can infer that this was likely only a test. Cyber actors will test out their capabilities in such a way to prepare for a larger attack later.

Will you be prepared for when that happens?

Ready for Anything

Use Syxsense to survey your environment and rapidly deploy any needed updates. On the home page, you can quickly see which devices require critical updates.

By clicking on the gadget, you’ll jump right into a patch deployment process, pre-populated to deploy all critical updates to all devices that need them. You can easily modify this task to be more specific or start the task as-is to deploy the critical patches.

Third-Party Patch Updates

Below is a table of third-party updates:

Vendor Category Patch Version and Release Notes:
Adobe Media Software  

Flash and Air: v31 – https://helpx.adobe.com/flash-player/release-note/fp_31_air_31_release_notes.html

 
Apple Media Software  

iTunes: v12.9.0.167 – https://en.wikipedia.org/wiki/History_of_iTunes#iTunes_12

 
Evernote  

Evernote: v6.15.3.7881 – https://evernote.com/security/updates

 
FileZilla FTP Solution  

FileZilla: v3.37.0 – https://filezilla-project.org/versions.php

 
Google Browser  

Chrome: v69.0.3497.100 – https://chromereleases.googleblog.com/2018/09/stable-channel-update-for-chrome-os.html

 
KeePass Password Manager  

KeePass: v2.40 – https://keepass.info/news/n180910_2.40.html

 
Mozilla Browser and Email Application  

Firefox: v62.0.2 – https://www.mozilla.org/en-US/firefox/62.0.2/releasenotes/

 
RealVNC Remote Access Software  

RealVNC Viewer: v6.18.907 – https://www.realvnc.com/en/connect/docs/desktop-release-notes.html

 
VSRevo Group  

Revo Uninstaller Pro: v4.0 – https://www.revouninstaller.com/revo_uninstaller_pro_full_version_history.html

 
Syxsense demo

Schedule Your Syxsense Demo

Syxsense combines IT management, patch management, and security vulnerability scanning in one powerful solution. Get started today.

Schedule My Demo
September 25, 2018
Love0
|||

HP Keylogger Discovered Again

By News
[vc_single_image image=”13271″ img_size=”full”]

How many of your devices are affected?

A security researcher, Twitter name ZwClose, has uncovered that 460 models of HP devices come with pre-installed keyloggers. Embedded in the SynTP.sys file, attackers could navigate around User Account Control and activate this keylogger.

This is the second time this year that a built-in keylogger was discovered on HP devices. In May, it was revealed that an HP audio driver was storing a log of the user’s keystrokes.

In a security bulletin, HP sought to ease the fears of their owners. “A party would need administrative privileges in order to take advantage of the vulnerability. Neither Synaptics nor HP has access to customer data as a result of this issue.” You can read more about the vulnerability and see a full list of effected device models.

Even though the keylogger is disabled by default, HP has released a driver update that should eliminate the issue. If you have any HP devices within your environment, you’ll want to update them immediately.

Take Action

With an IT management solution like Syxsense, it’s easy to see how many HP devices you have. You can run a scan to view every device with an IP address in your environment. Then a query can be created to view all HP models that are affected by the keylogger. Obtain the update from HP and upload it into the CMS console.

You can then take that query of HP devices and target it to rapidly deploy the update to any vulnerable endpoints. In no time at all, you’ll have detected, scanned, and patched all vulnerable HP devices.

[vc_single_image image=”13282″ img_size=”180×180″ alignment=”center”]
[vc_separator css=”.vc_custom_1494871528028{padding-top: 15px !important;padding-bottom: 5px !important;}”]

Start a Free Trial

Start a free, 14-day trial of Syxsense, which helps organizations from 50 to 10,000 endpoints monitor and manage their environment, all from just a web browser. An email will be automatically sent to the address you provide.

[dt_default_button link=”url:https%3A%2F%2Fdev-syxsense.pantheonsite.io%2Fsyxsense-trial%2F|||” size=”big” button_alignment=”btn_center”]START FREE TRIAL[/dt_default_button]
December 19, 2017
Love0