Terms and conditions apply Share
Copy
Version 90 of Google s Chrome browser includes a bit of extra security for users of recent versions of Windows and the latest x86 processors, in the form of hardware-enforced stack protection.
This basically means that, if your PC supports it, it s a bit harder for malicious websites to exploit bugs in Chrome to hijack your computer.
Released in April, Chrome 90 supports Intel’s Control-flow Enforcement Technology (CET) [PDF], a processor-based defense against exploits that use something like Return Oriented Programming (ROP) to violate a program s control-flow integrity (CFI).
ROP is a code-reuse attack. It involves bouncing the CPU core between snippets of instructions in an application to form a malicious program. Think of it like cutting letters or words out of a newspaper to spell out a ransom note. You stitch together different parts of the software under attack to do things like disable security measures, or open a backdoor
Chrome 90 propose une nouvelle protection contre les cyberattaques zdnet.fr - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from zdnet.fr Daily Mail and Mail on Sunday newspapers.
Google Chrome has enabled hardware-enforced stack protection technology that Microsoft first adopted for Windows 10. It works with machines running on Windows 20H1 (December Update) or later powered by processors that support Control-flow Enforcement Technology (CET) such as AMD Zen 3 Ryzen and 11th-generation Intel CPUs.
New Windows User Mode Exploit Development (EXP-301) Training Course Teaches Exploit Development and Reverse Engineering Techniques
NEW YORK – January 27, 2021 – Offensive Security, the leading provider of hands-on cybersecurity training and certifications, today announced the launch of Windows User Mode Exploit Development (EXP-301), a new course focused on exploit development and reverse engineering techniques. EXP-301 teaches the fundamentals of exploit development, and emphasizes the techniques that security researchers must learn to understand and attack standard Windows protections.
“Security today requires constantly staying one step ahead of attackers, and this necessitates a creative, curious, adversarial mindset,” said Ning Wang, CEO, Offensive Security. “Defenders must not only understand all the defense techniques that enterprises employ, but also be able to take the next step and infer from there how attackers work to bypass these defenses. At OffSec we are
CES 2021 : Intel veut des processeurs résistants aux ransomwares zdnet.fr - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from zdnet.fr Daily Mail and Mail on Sunday newspapers.