Tag: windows
-
Void Banshee Attacks Leverage Windows MSHTML Spoofing Bug
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/void-banshee-attacks-leverage-windows-mshtml-spoofing-bug
-
Microsoft may have revealed Windows 11 24H2 is coming this month
by
in SecurityNewsMicrosoft may have accidentally confirmed that Windows 11 24H2 (Windows 11 2024 Update) is arriving on September 24 as part of the optional preview up… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-may-have-revealed-windows-11-24h2-is-coming-this-month/
-
U.S. CISA adds Microsoft Windows MSHTML Platform and Progress WhatsUp Gold bugs to its Known Exploited Vulnerabilities catalog
by
in SecurityNewsU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft Windows MSHTML Platform and Progress WhatsUp Gold bugs to its Known Exploi… First seen on securityaffairs.com Jump to article: securityaffairs.com/168505/security/u-s-cisa-microsoft-windows-mshtml-platform-progress-whatsup-gold-bugs-known-exploited-vulnerabilities-catalog.html
-
Exploiting Windows MiniFilter to Bypass EDR Protection
by
in SecurityNewsWindows Minifilter drivers are a type of file system filter driver that operates within the Windows operating system to manage and modify I/O operatio… First seen on gbhackers.com Jump to article: gbhackers.com/windows-minifilter-abused/
-
Microsoft Windows Kernel Vulnerability Exploited in the Wild
by
in SecurityNewsMicrosoft has confirmed the exploitation of a Windows Kernel vulnerability, identified as CVE-2024-37985, in the wild. This vulnerability, first relea… First seen on gbhackers.com Jump to article: gbhackers.com/microsoft-windows-kernel-vulnerability/
-
Proofconcept code released for zero-click critical IPv6 Windows hole
by
in SecurityNews
Tags: windowsFirst seen on theregister.com Jump to article: www.theregister.com/2024/08/28/proofofconcept_code_released_for_zeroclick/
-
Chrome 129 Released with Fix for Multiple Security Vulnerabilities
by
in SecurityNewsThe Chrome team has officially announced the release of Chrome 129, which is now available on the stable channel for Windows, Mac, and Linux. This upd… First seen on gbhackers.com Jump to article: gbhackers.com/chrome-129-released-fix/
-
Windows Server 2012 / R2 und Windows 7 (10. September 2024)
by
in SecurityNews
Tags: windowsZum 10. September 2024 wurden diverse Sicherheitsupdates für Windows Server 2012/R2 (1. ESU Jahr) veröffentlicht. Für Windows 7 SP1 und Windows Server… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/09/11/windows-server-2012-r2-und-windows-7-10-september-2024/
-
Recently patched Windows flaw CVE-2024-43461 was actively exploited as a zero-day before July 2024
Microsoft warns that a recently patched Windows flaw, tracked as CVE-2024-43461, was actively exploited as a zero-day before July 2024. Microsoft warn… First seen on securityaffairs.com Jump to article: securityaffairs.com/168467/hacking/windows-cve-2024-43461-actively-exploited-before-july-2024.html
-
Microsoft rolls out Office LTSC 2024 for Windows and Mac
by
in SecurityNewsMicrosoft has announced that Office LTSC (Long Term Servicing Channel) 2024, a volume-licensed and perpetual version of Office for Windows and macOS u… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-rolls-out-office-ltsc-2024-for-windows-and-mac/
-
CISA warns of Windows flaw used in infostealer malware attacks
CISA has ordered U.S. federal agencies to secure their systems against a recently patched Windows MSHTML spoofing zero-day bug exploited by the Void B… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-warns-of-windows-flaw-used-in-infostealer-malware-attacks/
-
CISA Warns of Windows MSHTML Progress WhatsUp Gold Flaw Exploited Widely
by
in SecurityNewsThe Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding two critical vulnerabilities affecting Microsoft Wi… First seen on gbhackers.com Jump to article: gbhackers.com/cisa-warns-windows-mshtml-progress-whatsup-gold/
-
Patchday Microsoft: Angreifer attackieren vier Lücken in Windows & Co.
by
in SecurityNewsFirst seen on heise.de Jump to article: www.heise.de/news/Patchday-Microsoft-Aeltere-Sicherheitsupdates-in-neuer-Luecke-ausgehebelt-9864233.html
-
Microsoft confirms second 0-day exploited by Void Banshee APT (CVE-2024-43461)
by
in SecurityNewsCVE-2024-43461, a spoofing vulnerability affecting Windows MSHTML a software component used by various apps for rendering render web pages on Windows … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/09/16/cve-2024-43461-exploited/
-
Ende der Windows-10-Dominanz – Windows 11 gewinnt an Bedeutung auf Steam fast Platz 1
by
in SecurityNews
Tags: windowsFirst seen on computerbase.de Jump to article: www.computerbase.de/2024-07/ende-der-windows-10-dominanz-windows-11-gewinnt-an-bedeutung-auf-steam-fast-platz-1
-
EchoStrike: Generate undetectable reverse shells, perform process injection
by
in SecurityNewsEchoStrike is an open-source tool designed to generate undetectable reverse shells and execute process injection on Windows systems. >>EchoStrike allo… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/09/16/echostrike-reverse-shells-process-injection/
-
Windows vulnerability abused braille spaces in zero-day attacks
by
in SecurityNewsA recently fixed Windows MSHTML spoofing vulnerability tracked under CVE-2024-43461 is now marked as previously exploited after it was used in attacks… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/windows-vulnerability-abused-braille-spaces-in-zero-day-attacks/
-
Niemand hat die Absicht, eine Mauer um den Windows-Kernel zu errichten
by
in SecurityNewsWie die Windows-Sicherheit verbessern? Microsoft lud Security-Anbieter zum großen Konsens-Summit. Der Elefant im Raum: ein abgeriegelter Windows-Kerne… First seen on heise.de Jump to article: www.heise.de/news/Microsofts-Windows-Kernel-Niemand-hat-die-Absicht-eine-Mauer-zu-errichten-9867222.html
-
SentinelOne-CEO: Risiken einer Konzentration auf einen einzigen Anbieter sind überdeutlich
by
in SecurityNewsNach dem durch Security-Anbieter Crowdstrike verursachten weltweiten Windows-Ausfall im letzten Monat findet SentinelOne-CEO Tomer Weingarten klare un… First seen on crn.de Jump to article: www.crn.de/news/4351378/sentinelone-ceo-risiken-einer-konzentration-auf-einen-einzigen-anbieter-sind-uberdeutlich
-
Microsoft Says Recent Windows Vulnerability Exploited as Zero-Day
by
in SecurityNewsMicrosoft warns that a recently patched Windows vulnerability was exploited in the wild as a zero-day prior to July 2024. The post Microsoft Says Rece… First seen on securityweek.com Jump to article: www.securityweek.com/microsoft-says-recent-windows-vulnerability-exploited-as-zero-day/
-
After CrowdStrike Crash, Microsoft Mulls New Windows Security Tools
by
in SecurityNewsMicrosoft is looking to add new security platform features to Windows, including allowing security vendors to operate outside of the OS’ kernel to avo… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/after-crowdstrike-crash-microsoft-mulls-new-windows-security-tools/
-
Windows 0-day was exploited by North Korea to install advanced rootkit
by
in SecurityNewsFirst seen on arstechnica.com Jump to article: arstechnica.com/
-
Post-CrowdStrike Fallout: Microsoft Redesigning EDR Vendor Access to Windows Kernel
by
in SecurityNewsMicrosoft is revamping how anti-malware tools interact with the Windows kernel to avoid another CrowdStrike faulty update catastrophe. The post Post-… First seen on securityweek.com Jump to article: www.securityweek.com/post-crowdstrike-fallout-microsoft-redesigning-edr-vendor-access-to-windows-kernel/
-
Chinese DragonRank Hackers Exploit Global Windows Servers in SEO Fraud
First seen on hackread.com Jump to article: hackread.com/chinese-dragonrank-hackers-windows-servers-seo-fraud/
-
Post-CrowdStrike catastrophe, Microsoft figures moving antivirus out of Windows kernel mode is a good idea
by
in SecurityNewsFirst seen on theregister.com Jump to article: www.theregister.com/2024/09/13/microsoft_is_updating_windows_to/
-
Patchday: Windows 11/Server 2022-Updates (10. September 2024)
by
in SecurityNewsAm 10. September 2024 (zweiter Dienstag im Monat, Patchday bei Microsoft) hat Microsoft auch kumulative Updates für Windows 11 23H2 bis 21H2 veröffent… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/09/11/patchday-windows-11-server-2022-updates-10-september-2024/
-
Adobe Patch Tuesday security updates fixed multiple critical issues in the company’s products
by
in SecurityNewsAdobe addressed tens of vulnerabilities, including critical issues that could allow attackers to execute arbitrary code on Windows and macOS. Adobe Pa… First seen on securityaffairs.com Jump to article: securityaffairs.com/168313/security/adobe-patch-tuesday-sept-2024.html
-
Patchday: Windows 10/Server-Updates (10. September 2024)
by
in SecurityNewsAm 10. September 2024 (zweiter Dienstag im Monat, Patchday bei Microsoft) wurden verschiedene kumulative Updates für die unterstützten Windows 10 Buil… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/09/11/patchday-windows-10-server-updates-10-september-2024/
-
Microsoft Security Update Summary (10. September 2024)
by
in SecurityNewsAm 10. September 2024 hat Microsoft Sicherheitsupdates für Windows-Clients und -Server, für Office sowie für weitere Produkte veröffentlicht. Die Sich… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/09/10/microsoft-security-update-summary-10-september-2024/
-
Kernel Mode Under the Microscope at Windows Security Summit
by
in SecurityNews
Tags: windowsCompany Focused on Safe Deployment Practices, Reducing Kernel Mode Dependencies. Cutting kernel mode dependencies and adopting safe deployment practic… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/kernel-mode-under-microscope-at-windows-security-summit-a-26280