Security news that informs and inspires

Archive

111 results for tag Microsoft:

Microsoft Windows Update Fixes Known, Actively Exploited Flaw

Microsoft issued a patch for the Follina vulnerability, which was first disclosed in May and has been under active exploitation by attackers.

Microsoft

Exploits Target Zero Day in Windows and Office

A zero day flaw (CVE-2022-30190) in Windows and Office is under active attack and MIcrosoft has not issued a patch yet.

Microsoft

IceApple Post-Exploitation Framework Deployed on Exchange Servers

Researchers have discovered a sophisticated post-exploitation framework being deployed on Microsoft Exchange servers to assist threat actors with credential harvesting and local reconnaissance.

Malware, Microsoft

After Microsoft Macro Malware Crackdown, Attackers Explore New Options

After Microsoft started blocking macros obtained from the internet by default, email attackers are exploring alternative techniques to distribute Emotet, Qakbot, IcedID and other payloads.

Malware, Microsoft

Microsoft Uncovers ‘Nimbuspwn’ Flaws in Linux Service

Microsoft researchers found a group of vulnerabilities dubbed Nimbuspwn in a Linux service named networkd-dispatcher that can lead to root privileges.

Linux, Microsoft