Security news that informs and inspires

Archive

169 results for tag Microsoft:

RedDriver Abuses Windows Driver Policy Loophole

An undocumented malicious driver called RedDriver uses an open-source tool to forge signature timestamps, as a way to bypass Microsoft’s Windows driver signature enforcement policies.

Windows, Microsoft

Microsoft Azure Serial Console Abused in UNC3944 Attacks

An UNC3944 attack highlights how threat actors can abuse legitimate cloud resources for various purposes after compromising the Azure administrator's account.

Azure, Azure AD, Microsoft

Microsoft Fixes Windows Bug, Secure Boot Bypass Under Active Attack

Microsoft has patched two flaws (CVE-2023-29336 and CVE-2023-24932) that have been actively exploited.

Microsoft, UEFI

PaperCut Flaws Exploited to Deploy Clop, LockBit Ransomware

Microsoft has attributed exploitation attempts of CVE-2023-27350 and CVE-2023-27351 to a Clop ransomware affiliate.

Ransomware, Lockbit, Clop, Microsoft

Microsoft Patches Windows CLFS Zero Day

Microsoft has patched a zero day in the Windows common log file system driver that has been actively exploited.

Microsoft