Slack fixes a critical RCE bug in its desktop app

clock • 2 min read

The flaw could have allowed attackers to access private conversations, channels, passwords, keys and tokens, and various functions within the app

Slack has fixed a critical remote code execution (RCE) vulnerability in its desktop app which could have allowed a remote attacker to take control over the app and steal users' confidential informa...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Two command injection bugs threaten Fortinet's FortiSIEM

Threats and Risks

Affect versions from October 2022 to 2024

clock 07 February 2024 • 2 min read
Microsoft's calm start to 2024: January Patch Tuesday addresses 49 bugs

Threats and Risks

None of them is currently under active exploitation or publicly disclosed

clock 10 January 2024 • 3 min read
Atlassian releases security updates to address high-severity bugs

Threats and Risks

Company advises users to upgrade their instances to the latest available version

clock 25 September 2023 • 2 min read

More on Threats and Risks

Ivanti VPN malware can survive a factory reset, warns CISA

Ivanti VPN malware can survive a factory reset, warns CISA

'Assume a sophisticated threat actor may deploy rootkit level persistence'

John Leonard
clock 01 March 2024 • 2 min read
Hugging Face AI platform infested with 100 malicious code-execution models, researchers warn

Hugging Face AI platform infested with 100 malicious code-execution models, researchers warn

These models could create a persistent backdoor for attackers

clock 01 March 2024 • 3 min read
US, UK, Canada seek global coalition to combat state disinformation

US, UK, Canada seek global coalition to combat state disinformation

US, UK and Canada have endorsed a framework to tackle information manipulation

clock 27 February 2024 • 3 min read