Watch out for Microsoft Edge's SmartScreen

Το SmartScreen είναι ένα από τα χαρακτηριστικά ασφαλείας που διαθέτει η Microsoft στο πρόγραμμα περιήγησης Edge για να προειδοποιεί για ιστοσελίδες που έχουν επισημανθεί σαν επικίνδυνες. Όμως ένας ερευνητής s discovered a way cybercriminals can use to abuse this feature by delivering false alerts.

Manuel Caballero explains his blog, that Microsoft Edge has a vulnerability that allows ms-appx: and ms-appx-web: two commands that can generate fake warnings similar to those issued by SmartScreen and which could be used in more complex ways.smartscreen

For example, attackers could use these warnings to persuade their unsuspecting victims to call a phone number from where they would try to steal various information.

SmartScreen is a feature available in both Microsoft Edge and , but this bug has only been proven in Windows 10's default browser.

In essence, SmartScreen is an extremely useful feature that keeps them safe from websites used to spread malware.

Microsoft currently has no solution to the problem and is probably preparing to fix it in the next updates. At present, the defect exists and has already been reported to the general public. For this, be very careful when browsing Edge, until Microsoft decides to fix it.

Φυσικά μπορείτε πάντα να χρησιμοποιήσετε κάποιον άλλο browser που θα σας προσφέρει περισσότερη ασφάλεια (βλέπε και Google Chrome).

https://www.brokenbrowser.com/spoof-addressbar-malware/

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).