The German security service BSI has issued a security alert for Kaspersky antivirus, advising users to install the latest patches as soon as possible.
The announcement (is available here in German), does not provide details on whether any exploit is currently circulating on the internet exploited by fraudsters. BSI generally warns that malicious users could send an email containing a malicious file their goals, and that this file "should not be opened" under any circumstances.
The security gap reported by BSI is recognized as CVE-2019-8285 and Kaspersky has been fixing it since last month.
The patch has already been released through the built-in update system of the productof Kaspersky, so if automatic ones are enabled updates in application that you use, your device should already be up to date and secure.
"OR Kaspersky Lab διόρθωσε ένα ζήτημα ασφαλείας (CVE-2019-8285) στα προϊόντα της το οποίο θα μπορούσε να επιτρέψει σε τρίτους να τρέξουν εξ αποστάσεως αυθαίρετο κώδικα στον υπολογιστή ενός χρήστη με δικαιώματα διαχειριστή. Η ενημέρωση ασφαλείας εγκαταστάθηκε στους πελάτες της Kaspersky Lab στις 4 Απριλίου 2019 μέσω των ενημερώσεων προϊόντος “, ανέφερε η Kaspersky στις 8 Μαΐου.
"This problem was classified as a buffer overflow vulnerability (buffer overflow vulnerability). The destruction of memory during duration of JS file detection could lead to the execution of arbitrary code on the victim's system.”
What can I do; I use her antivirus Kaspersky
If you are using the company's software, and you have not updated it, it would be good to update it immediately, from the application settings.
______________
- Microsoft vs Google: Why browsers' war does not focus on privacy
- How much personal data do companies collect?
- Chinese hackers used the NSA tools before Shadow Brokers leaked
- WinRAR running malicious code from the application