Neowin: CIA-created spyware called Athena released by WikiLeaks, targets all major Windows versions. “Codenamed ‘Athena’, the spyware was apparently created by the CIA in conjunction with Siege Technologies, a New Hampshire cyber tech firm. Athena allows an attacker to take total control of a computer, send and retrieve data to and from remote locations, such as CIA servers, delete data and also upload other malicious code onto the computer, thereby introducing even more infections. It also works for any version of Windows from Windows XP to Windows 10, marking it as particularly potent in both its capabilities and its reach.”
Neowin: Microsoft announces new Bing features following Build 2017. “Following Microsoft’s annual Build event last week, which was thoroughly covered by Neowin, the company has now announced some new features arriving to Bing. The search engine will now support bots, eSports coverage and search for hiking and camping places.”
Wired: If You Still Use Windows XP, Prepare For the Worst . “AS A VICIOUS new strain of ransomware swept the UK’s National Health Service yesterday, shutting off services at hospitals and clinics throughout the region, experts cautioned that the best protection was to download a patch Microsoft had issued in March. The only problem? A reported 90 percent of NHS systems run Windows XP, an operating system Microsoft first introduced in 2001, and hasn’t supported since 2014.”
ThreatPost: Microsoft Plugs Three Zero Day Holes As Part Of May Patch Tuesday. “In total, Microsoft released patches for 55 unique CVEs for Internet Explorer, Edge, Office, Windows and the .NET Framework as part of its May Patch Tuesday release. Fourteen of vulnerabilities were rated critical.” This does not include the Google Zero Day which I mentioned a couple days ago, because that was already addressed with an emergency patch..
Hacker News: Google 0-Day Hunters Find ‘Crazy Bad’ Windows RCE Flaw . “Google Project Zero’s security researchers have discovered another critical remote code execution (RCE) vulnerability in Microsoft’s Windows operating system, claiming that it is something truly bad. Tavis Ormandy announced during the weekend that he and another Project Zero researcher Natalie Silvanovich discovered ‘the worst Windows remote code [execution vulnerability] in recent memory. This is crazy bad. Report on the way.'”
Ugh. It’s 2017 and I can’t believe Microsoft is still trying this stuff. The Verge: Windows 10 S won’t let you change the default browser or switch to Google search. “In a FAQ for Windows 10 S, Microsoft admits ‘you are able to download another browser that might be available from the Windows Store, but Microsoft Edge will remain the default if, for example, you open an .htm file.’ This means if you click a link from another app, or open a link from an email then you’ll be thrown into Microsoft Edge, even if you wanted to use another browser.”
MakeUseOf: How to 1-Click Reinstall Windows 10 Without Losing Personal Data. “Reinstalling Windows is a lot easier than it once was. In the days of Windows XP, you didn’t have much choice aside from erasing everything and restoring from a backup. Fast-forward to Windows 10 and Microsoft has added plenty of options for getting a fresh start.”