Hello, welcome to the Thursday, March 28th, 2019 edition of the Sands and a minute Storm Center's Stormcast.

My name is Johannes Ulrich.

And today I'm recording from Madrid, Spain.

Windows 10 users who are using Google Chrome or Firefox will now be able to download an extension from Microsoft that will

supply Microsoft's extension guard feature to these browsers.

Now the way this feature works is that it is really meant for an enterprise network,

so an enterprise administrator needs to define a list of trusted or untrusted websites.

If a user is browsing to a website that's not on the trusted list, then this browsing session

is automatically opened in Microsoft Edge.

And Microsoft Edge in this mode is running in a sandbox that limits

communication to the rest of this system. The idea here is that even if Microsoft Edge

should be compromised by a malicious website, well, that compromise will be limited to the sandbox

and the rest of the system will remain unharmed.

Of course, Microsoft Edge as a browser has received quite a bit of criticism and isn't terribly popular,

so one could see this as a way how Microsoft is trying to trick Google Chrome and Firefox users into using Microsoft Edge.

But overall, sounds like an interesting security feature,

and like I said, really more meant for enterprise networks

where you have someone that manages a list of trusted and untrusted websites.

And researchers at the Korean Advanced Institute of Science and Technology have created a new

fuzzer for LTE.

Fuzzers, well, it's a type of security testing software that more or less bombards a system

with random or close to random input

...