Version 94 of Edge is getting CET support.
CET stands for Control-Flow Enforcement Technology.
It helps prevent hackers from changing program behaviors.
Though our machines are always vulnerable to some sort of threat, the folks over at Microsoft are determined to whittle down the possibilities. That s why Microsoft Edge version 94 is getting Control-Flow Enforcement Technology (CET) support.
That complex-sounding term means that Edge will be protected from hackers using its code against it by altering processes and behaviors for stealthy, hard-to-detect attacks. CET will block flow-altering operations, meaning that doomsday will be averted if anything goes sideways or not according to plan.
Microsoft Edge is getting an even more private browsing mode techradar.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from techradar.com Daily Mail and Mail on Sunday newspapers.
Terms and conditions apply Share
Copy
Version 90 of Google s Chrome browser includes a bit of extra security for users of recent versions of Windows and the latest x86 processors, in the form of hardware-enforced stack protection.
This basically means that, if your PC supports it, it s a bit harder for malicious websites to exploit bugs in Chrome to hijack your computer.
Released in April, Chrome 90 supports Intel’s Control-flow Enforcement Technology (CET) [PDF], a processor-based defense against exploits that use something like Return Oriented Programming (ROP) to violate a program s control-flow integrity (CFI).
ROP is a code-reuse attack. It involves bouncing the CPU core between snippets of instructions in an application to form a malicious program. Think of it like cutting letters or words out of a newspaper to spell out a ransom note. You stitch together different parts of the software under attack to do things like disable security measures, or open a backdoor
UPDATE: Microsoft continues to work with partners and customers to expand our knowledge of the threat actor behind the nation-state cyberattacks that compromised the supply chain of SolarWinds and impacted multiple other organizations. Microsoft previously used ‘Solorigate’ as the primary designation for the actor, but moving forward, we want to place appropriate focus on the actors behind the sophisticated attacks, rather than one of the examples of malware used by the actors. Microsoft Threat Intelligence Center (MSTIC) has named the actor behind the attack against SolarWinds, the SUNBURST backdoor, TEARDROP malware, and related components as NOBELIUM. As we release new content and analysis, we will use NOBELIUM to refer to the actor and the campaign of attacks.
Microsoft Releases New Info on SolarWinds Attack Chain
Threat actors went to elaborate lengths to maintain operational security around second-stage payload activation, company says.
More than one month after the SolarWinds breach that impacted numerous organizations was first uncovered, new details of the sophisticated operation continue to trickle out.
The latest information comes from Microsoft, which this week released details of its analysis of the tactics used by the threat actors to activate a second-stage payload for downloading the Cobalt Strike attack kit on infected systems.
Related Content:
According to Microsoft, that particular aspect of the attack chain has been unclear up until now and is significant because it reveals the extent to which the attackers went to ensure operational security.