It's just two weeks since a Windows 0-day was revealed on Twitter, and now the same thing has happened for the Tor browser. Zerodium -- self-described as "the premium exploit acquisition program" -- exposed a backdoor vulnerability in Tor that makes it possible to bypass security protections. The vulnerability affects Tor 7, and the vendor says that the problem has been addressed in the recently-released Tor 8. A proof-of-concept for the security has also been published. See also: Tor for Android brings secure, anonymous internet browsing to your mobile phone Microsoft Windows task scheduler 0-day outed on Twitter Malware writers…
[Continue Reading]