Trend Micro, the popular security research firm, and anti-virus maker, is the latest to have been at the receiving end of criticism from Tavis Ormandy.
The Google Project Zero engineer, has slammed the antivirus maker, for security vulnerabilities in its products.
Ormandy has previously discovered vulnerabilities, in products from ESET, Kaspersky, and AVG, to name a few.
The issue was that the Trend Micro antivirus, installs a password manager app, which was actually the vulnerable component. The app which starts automatically upon boot, was written in node.js makes several HTTP RPC (Remote Procedure Calls), which were open to arbitrary code [...]
Today, we cane across a rather interesting yet shocking report, about how some malvertisers are using a HTTPS certificate to trick users.
Malvertising, aka malware in online advertisements, is a serious problem. Google and Microsoft stepped up their efforts to combat such online threats. The two companies updated their ad policies, to strictly disallow malicious and misleading ads in their ad services.
A popular online safety practice, is to use the HTTPS protocol. This secure encryption protocol [...]