Subj : Sophos Virus News
To   : All
From : Daryl Stout
Date : Mon Mar 27 2023 13:30:05

Here is the latest information from the Naked Security Blog from Sophos.
You can go to nakedsecurity.sophos.com to read these. You can also sign
up to have these delivered to your email during the week.

***
	
Microsoft assigns CVE to Snipping Tool bug, pushes patch to Store

Microsoft says "successful exploitation requires uncommon user
interaction", but it's the innocent and accidental leakage of
private data you should be concerned about.

***
	
In Memoriam - Gordon Moore, who put the more in "Moore’s Law"

His prediction was called a "Law", though it was an exhortation
to engineering excellence as much it was an estimate.

***

WooCommerce Payments plugin for WordPress has an admin-level hole;
patch now!

Admin-level holes in websites are always a bad thing... and for "bad",
read "worse" if it's an e-commerce site.

***

S3 Ep127: When you chop someone out of a photo, but there they are
anyway...

Listen now - latest episode. Full transcript inside.

***

Windows 11 also vulnerable to "aCropalypse" image data leakage

Turns out that the Windows 11 Snipping Tool has the same "aCropalypse" 
data leakage bug as Pixel phones. Here's how to work around the
problem...

***

Google Pixel phones had a serious data leakage bug - here's what to do!

What if the "safe" images you shared after carefully cropping them...
had some or all of the "unsafe" pixels left behind anyway?

***
--- SBBSecho 3.14-Win32
 * Origin: The Thunderbolt BBS - Little Rock, Arkansas (454:1/33)

.