The German security agency BSI has issued a warning about a security flaw in the Kaspersky antivirus, recommending that users install the latest patches as soon as possible.
The announcement (is available here in German), does not detail whether there are any exploits currently circulating online that are being exploited by fraudsters. BSI generally warns that malicioususers could send an email containing a malicious file their goals, and that this file "should not be opened" under any circumstances.
The security gap reported by BSI is recognized as CVE-2019-8285 and Kaspersky has been fixing it since last month.
The patch has already been released through the built-in update system of Kaspersky products, so if the automatic ones are enabled updates in the app you are using, your device should already be up to date and secure.
"OR Kaspersky Lab fixed a security issue (CVE-2019-8285) in its products that could allow third parties to remotely run arbitrary code on a user's computer with administrative privileges. The security update was installed on Kaspersky Lab customers on April 4, 2019 through product updates,” Kaspersky said on May 8.
"This problem was classified as a buffer overflow vulnerability (buffer overflow vulnerability). "Memory corruption while scanning JS files could lead to arbitrary code execution on the victim's system."
What can I do; I use her antivirus Kaspersky
If you are using the company's software, and you have not updated it, it would be good to update it immediately, from the application settings.
______________
- Microsoft vs Google: Why browsers' war does not focus on privacy
- How much personal data do companies collect?
- Chinese hackers used the NSA tools before Shadow Brokers leaked
- WinRAR running malicious code from the application