Security Alerts & Vulnerabilities

Latest Posts from Our Blog

(VPN) APPLICATIONS ARE STORING COOKIES INSECURELY

Vulnerability Alert: Multiple Virtual Private Network (VPN) applications are storing cookies insecurely

By Jeff Fowler | April 18, 2019
Categories: , , , ,

At SandStorm IT, we try to keep you up to date on the latest in tech news. This is especially true when the case is a potential vulnerability that could affect your business. A recent report from Carnegie Mellon University’s Software Engineering Institute is warning of an issue with multiple Virtual Private Network applications that…

Read More
WINRAR

Vulnerability in popular tool WinRAR is being used to install malware

By Jeff Fowler | March 15, 2019
Categories: , , , , , ,

“Earlier this month Check Point Research reported discovery of a 19 year old code execution vulnerability in the wildly popular WinRAR compression tool. Rarlab reports that there are over 500 million users of this program. While a patched version, 5.70, was released on February 26, attackers are releasing exploits in an effort to reach vulnerable…

Read More
Zero-Day Vulnerability Found in Google Chrome

Newly Discovered Zero-Day Vulnerability Found in Google Chrome

By Jeff Fowler | March 6, 2019
Categories: , , , , ,

In order to stay secure using Google Chrome, you need to update your browser immediately. There is a security vulnerability in the FileReader component of Chrome that could allow remote attacker to access memory and execute code to take unauthorized control of your machine. Here’s the official notice from Google: “The stable channel has been…

Read More
grammarly patch

Security Alert: Grammarly patches browser extension that was previously exposing user’s documents.

By Jeff Fowler | February 9, 2018
Categories: , , , ,

Update: This has been fixed by Grammarly as February 2018. It only affected Chrome version 14.826.1446. According to the Chromium.org report, around 22 million users are affected: “The Grammarly chrome extension (approx ~22M users) exposes it’s auth tokens to all websites, therefore any website can login to grammarly.com as you and access all your documents…

Read More

Connect w/ Us:

Subscription