Kaspersky 'was aware' of scanner flaw

By

Security firm Kaspersky was aware of the flaw in its online scanner and had issued a patch on 9 October, despite comments made to vnunet.com by its staff.

Kaspersky 'was aware' of scanner flaw
A spokesman for Kaspersky said that version 5.0.98.0 fixed the ActiveX vulnerability.

"Contrary to the statements made in the article Kaspersky Lab was indeed aware of the issue and had issued a statement on 9 October, providing advise [sic] to users," the spokesman said in a written statement.

However, the update was released on the homepage of the company's website under the heading 'Kaspersky Lab announces the release of a new version of its free Kaspersky Online Scanner'.

Users only received news about the fix for the vulnerability, which Secunia rated 'highly critical', if they followed the link. This is despite a warning attached to the update.

"Kaspersky Lab strongly recommends that all Kaspersky Online Scanner users install the new version of the application," the announcement said.
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
awareflawkasperskyofscannersecuritywas

Sponsored Whitepapers

Optus Enterprise Mobility
Optus Enterprise Mobility
Life After VMware: Scale Securely with mCloud by Micron21
Life After VMware: Scale Securely with mCloud by Micron21
Cut Cloud Costs Without Compromise: Discover mCloud by Micron21
Cut Cloud Costs Without Compromise: Discover mCloud by Micron21
What 4 wholesale distribution challenges aren’t going away anytime soon?
What 4 wholesale distribution challenges aren’t going away anytime soon?
State of the SOC: Building Resilience in a Shifting Threat Landscape
State of the SOC: Building Resilience in a Shifting Threat Landscape

Events

Most Read Articles

First npm worm "Shai-Hulud" released in supply chain attack

First npm worm "Shai-Hulud" released in supply chain attack
"VoidProxy" PhishKit targets Google and Microsoft users

"VoidProxy" PhishKit targets Google and Microsoft users
NSW gov third party-linked cyber incidents quadruple in two years

NSW gov third party-linked cyber incidents quadruple in two years
Actor auth tokens gave Global Admin access across Azure Entra ID tenants

Actor auth tokens gave Global Admin access across Azure Entra ID tenants
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?