Microsoft

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks

Iran, Malware & Threats, Microsoft, Mint Sandstorm, Nation-State /

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks 2024-01-17 at 20:31 By Ryan Naraine Microsoft says an APT with links to Iran’s military intelligence is impersonating a prominent journalist in clever spear-phishing attacks. The post Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks appeared first on SecurityWeek. This article is an […]

React to this headline:

Loading spinner

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks Read More »

Remotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE Implementation

Microsoft, Network Security, Pixiefail, Quarkslab, Supply Chain Security, Tianocore, UEFI, Vulnerabilities /

Remotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE Implementation 2024-01-16 at 16:16 By Ryan Naraine Quarkslab finds serious, remotely exploitable vulnerabilities in EDK II, the de-facto open source reference implementation of the UEFI spec. The post Remotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE Implementation appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Remotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE Implementation Read More »

Microsoft Lets Cloud Users Keep Personal Data Within Europe to Ease Privacy Fears

Microsoft, Uncategorized /

Microsoft Lets Cloud Users Keep Personal Data Within Europe to Ease Privacy Fears 2024-01-11 at 19:47 By Associated Press Microsoft said that it is upgrading its cloud computing service to let customers store all personal data within the European Union. The post Microsoft Lets Cloud Users Keep Personal Data Within Europe to Ease Privacy Fears

React to this headline:

Loading spinner

Microsoft Lets Cloud Users Keep Personal Data Within Europe to Ease Privacy Fears Read More »

Microsoft fixes critical flaws in Windows Kerberos, Hyper-V (CVE-2024-20674, CVE-2024-20700)

Don't miss, Hot stuff, Microsoft, MS Office, News, Patch Tuesday, security update, SharePoint, Tenable, Trend Micro /

Microsoft fixes critical flaws in Windows Kerberos, Hyper-V (CVE-2024-20674, CVE-2024-20700) 2024-01-09 at 22:02 By Zeljka Zorz For January 2024 Patch Tuesday, Microsoft has released fixes for 49 CVE-numbered vulnerabilities, two of which are critical: CVE-2024-20674 and CVE-2024-20700. None of the vulnerabilities fixed this time aroundare under active exploitation or have been previously publicly disclosed. The

React to this headline:

Loading spinner

Microsoft fixes critical flaws in Windows Kerberos, Hyper-V (CVE-2024-20674, CVE-2024-20700) Read More »

Microsoft Ships Urgent Fixes for Critical Flaws in Windows Kerberos, Hyper-V

Hyper-V, Kerberos, Microsoft, Network Security, Patch Tuesday, Vulnerabilities /

Microsoft Ships Urgent Fixes for Critical Flaws in Windows Kerberos, Hyper-V 2024-01-09 at 21:02 By Ryan Naraine Patch Tuesday: Redmond patches critical, remote code execution vulnerabilities haunting Windows Kerberos and Windows Hyper-V. The post Microsoft Ships Urgent Fixes for Critical Flaws in Windows Kerberos, Hyper-V appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Microsoft Ships Urgent Fixes for Critical Flaws in Windows Kerberos, Hyper-V Read More »

January 2024 Patch Tuesday forecast: A Focus on Printing

Adobe, apple, cybersecurity, Don't miss, Expert analysis, Expert corner, Google, Hot stuff, Ivanti, Microsoft, Mozilla, News, opinion, Patch Tuesday, predictions /

January 2024 Patch Tuesday forecast: A Focus on Printing 2024-01-05 at 08:16 By Help Net Security Happy 2024 Everyone! I hope everyone is looking forward to another exciting year in the ever-changing world of IT operations and software security. This article aims to provide a quick summary of some of the latest trends, announcements, and

React to this headline:

Loading spinner

January 2024 Patch Tuesday forecast: A Focus on Printing Read More »

Cisco to Acquire Isovalent, Add eBPF Tech to Cloud Portfolio

a16z, Cisco, cloud security, eBPF, Funding/M&A, Isovalent, Microsoft /

Cisco to Acquire Isovalent, Add eBPF Tech to Cloud Portfolio 21/12/2023 at 23:32 By Ryan Naraine Isovalent raised about 70 million in funding from prominent investors including Microsoft’s venture fund, Google, and Andreessen Horowitz. The post Cisco to Acquire Isovalent, Add eBPF Tech to Cloud Portfolio appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Cisco to Acquire Isovalent, Add eBPF Tech to Cloud Portfolio Read More »

Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE

Akamai, Malware & Threats, Microsoft, Microsoft Outlook, Vulnerabilities, Zero-Day /

Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE 19/12/2023 at 23:55 By Ionut Arghire Akamai researchers document more vulnerabilities and patch bypasses leading to zero-click remote code execution in Microsoft Outlook. The post Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE Read More »

Microsoft is working on a more secure print system for Windows

Don't miss, drivers, Hot stuff, Microsoft, News, software protection, Windows /

Microsoft is working on a more secure print system for Windows 18/12/2023 at 17:01 By Helga Labus After announcing a gradual elimination of third-party printer drivers on Windows earlier this year, Microsoft has now unveiled its plan for enhancing security by introducting Windows Protected Print Mode (WPP). The problem with the current Windows print system

React to this headline:

Loading spinner

Microsoft is working on a more secure print system for Windows Read More »

Qakbot returns in fresh assault on hospitality sector

botnet, Don't miss, hospitality industry, Hot stuff, Malware, Microsoft, News, phishing /

Qakbot returns in fresh assault on hospitality sector 18/12/2023 at 15:47 By Helga Labus The Qakbot botnet has been disrupted this summer, but cybercriminals are not ready to give up on the malware: Microsoft’s threat analysts have spotted a new phishing campaign attempting to deliver it to targets in the hospitality industry. Qakbot and its

React to this headline:

Loading spinner

Qakbot returns in fresh assault on hospitality sector Read More »

Microsoft Disrupts Cybercrime Service That Created 750 Million Fraudulent Accounts

cybercrime, Microsoft, takedown /

Microsoft Disrupts Cybercrime Service That Created 750 Million Fraudulent Accounts 14/12/2023 at 14:35 By Ionut Arghire Microsoft disrupts Storm-1152, a cybercrime-as-a-service business facilitating phishing, identity theft, and DDoS attacks. The post Microsoft Disrupts Cybercrime Service That Created 750 Million Fraudulent Accounts appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Microsoft Disrupts Cybercrime Service That Created 750 Million Fraudulent Accounts Read More »

Cybercrime operation that sold millions of fraudulent Microsoft accounts disrupted

Arkose Labs, cybercrime, cybercriminals, cybersecurity, Don't miss, law enforcement, Microsoft, News /

Cybercrime operation that sold millions of fraudulent Microsoft accounts disrupted 14/12/2023 at 12:19 By Help Net Security Microsoft disrupted an alleged threat actor group that built viable cybercrime-as-a-service (CaaS) businesses. Dubbed Storm-1152 by Microsoft, the group bilked enterprises and consumers globally out of millions of dollars. Images of Storm-1152’s illicit websites. Source: Microsoft Cybercrime-as-a-service is

React to this headline:

Loading spinner

Cybercrime operation that sold millions of fraudulent Microsoft accounts disrupted Read More »

Microsoft ICSpector: A leap forward in industrial PLC metadata analysis

GitHub, Microsoft, News, open source, software /

Microsoft ICSpector: A leap forward in industrial PLC metadata analysis 14/12/2023 at 07:33 By Help Net Security Microsoft ICSpector is an open-source forensics framework that enables the analysis of industrial PLC metadata and project files. Architecture The framework provides investigators with a convenient way to scan for PLCs and identify any suspicious artifacts within ICS

React to this headline:

Loading spinner

Microsoft ICSpector: A leap forward in industrial PLC metadata analysis Read More »

New AI Safety Initiative Aims to Set Responsible Standards for Artificial Intelligence

Anthropic, Artificial Intelligence, ChatGPT, cloud security, Microsoft, OpenAI /

New AI Safety Initiative Aims to Set Responsible Standards for Artificial Intelligence 13/12/2023 at 21:32 By SecurityWeek News Major software vendors sign on to a new security initiative to create trusted best practices for artificial intelligence deployments. The post New AI Safety Initiative Aims to Set Responsible Standards for Artificial Intelligence appeared first on SecurityWeek.

React to this headline:

Loading spinner

New AI Safety Initiative Aims to Set Responsible Standards for Artificial Intelligence Read More »

Veeam adds BaaS capabilities for Veeam Backup for Microsoft 365

Industry news, Microsoft, Veeam Software /

Veeam adds BaaS capabilities for Veeam Backup for Microsoft 365 13/12/2023 at 17:01 By Industry News Veeam Software has expanded its relationship with Microsoft. Veeam is making it easier for customers to protect Microsoft 365 with Cirrus by Veeam which brings the ease and flexibility of Backup-as-a-Service (BaaS) for Microsoft 365. Utilizing the power and

React to this headline:

Loading spinner

Veeam adds BaaS capabilities for Veeam Backup for Microsoft 365 Read More »

Microsoft Patch Tuesday: Critical Spoofing and Remote Code Execution Flaws

Microsoft, Patch Tuesday, phishing, remote code execution, Vulnerabilities, Windows MSHTML /

Microsoft Patch Tuesday: Critical Spoofing and Remote Code Execution Flaws 12/12/2023 at 23:47 By Ryan Naraine Microsoft warns of critical spoofing and remote code execution bugs in the Windows MSHTML Platform and Microsoft Power Platform Connector. The post Microsoft Patch Tuesday: Critical Spoofing and Remote Code Execution Flaws appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Microsoft Patch Tuesday: Critical Spoofing and Remote Code Execution Flaws Read More »

December 2023 Patch Tuesday: 33 fixes to wind the year down

CVE, Don't miss, Hot stuff, Microsoft, News, Outlook, Patch Tuesday, security update, Tenable, Trend Micro /

December 2023 Patch Tuesday: 33 fixes to wind the year down 12/12/2023 at 23:20 By Zeljka Zorz Microsoft’s December 2023 Patch Tuesday is a light one: 33 patches, only four of which are deemed critical. “This month, Microsoft did not patch any zero-day vulnerabilities, marking only the second time in 2023 that no zero-days were

React to this headline:

Loading spinner

December 2023 Patch Tuesday: 33 fixes to wind the year down Read More »

“Pool Party” process injection techniques evade EDRs

CrowdStrike, Cybereason, Don't miss, Endpoint Security, Hot stuff, Microsoft, News, Palo Alto Networks, PoC, research, SafeBreach, SentinelOne, threat detection, XDR /

“Pool Party” process injection techniques evade EDRs 12/12/2023 at 14:01 By Zeljka Zorz SafeBreach researchers have discovered eight new process injection techniques that can be used to covertly execute malicious code on Windows systems. Dubbed “Pool Party” because they (ab)use Windows thread pools, these process injection techniques work across all processes and, according to the

React to this headline:

Loading spinner

“Pool Party” process injection techniques evade EDRs Read More »

Microsoft faces UK antitrust probe over OpenAI deal structure

ChatGPT, Microsoft, OpenAI, Technology /

Microsoft faces UK antitrust probe over OpenAI deal structure 08/12/2023 at 17:02 By Cointelegraph by Amaka Nwaokocha The regulator’s examination will assess whether the collaboration constitutes an “acquisition of control,” implying substantial influence of one party over another. This article is an excerpt from Cointelegraph.com News View Original Source React to this headline:

React to this headline:

Loading spinner

Microsoft faces UK antitrust probe over OpenAI deal structure Read More »

Scroll to Top