-
$8 million stolen in large-scale Uniswap airdrop phishing attack
Uniswap, a popular decentralized cryptocurrency exchange, lost close to $8 million worth of Ethereum in a sophisticated phishing attack yesterday.
- July 13, 2022
- 10:36 AM
0
-
VMware patches vCenter Server flaw disclosed in November
Eight months after disclosing a high-severity privilege escalation flaw in vCenter Server's IWA (Integrated Windows Authentication) mechanism, VMware has finally released a patch for one of the affected versions.
- July 12, 2022
- 07:31 PM
0
-
New report: How browser-based attacks are bypassing your security controls
Browser-based attacks, from AITM phishing and ClickFix to malicious OAuth apps and session hijacking, are driving today's biggest breaches.
A new report from Push Security breaks down the techniques attackers are using, real-world case studies, and the detection gaps leaving security teams exposed.
-
Microsoft fixes dozens of Azure Site Recovery privilege escalation bugs
Microsoft has fixed 32 vulnerabilities in the Azure Site Recovery suite that could have allowed attackers to gain elevated privileges or perform remote code execution.
- July 12, 2022
- 06:19 PM
- 0
-
CISA orders agencies to patch new Windows zero-day used in attacks
CISA has added an actively exploited local privilege escalation vulnerability in the Windows Client/Server Runtime Subsystem (CSRSS) to its list of bugs abused in the wild.
- July 12, 2022
- 05:10 PM
- 0
-
Hackers impersonate cybersecurity firms in callback phishing attacks
Hackers are impersonating well-known cybersecurity companies, such as CrowdStrike, in callback phishing emails to gain initial access to corporate networks.
- July 12, 2022
- 03:54 PM
- 1
-
Windows 11 KB5015814 update adds Search Highlights feature, 27 fixes
Microsoft has released the Windows 11 KB5015814 cumulative update with security updates, improvements, and the new Search Highlights feature.
- July 12, 2022
- 02:54 PM
- 2
-
Microsoft warns Windows Server 20H2 reaches EOS next month
Microsoft warned customers today that Windows Server, version 20H2 will be reaching its End of Service (EOS) next month, on August 9.
- July 12, 2022
- 02:53 PM
- 0
-
Hackers stole $620 million from Axie Infinity via fake job interviews
The hack that caused Axie Infinity losses of $620 million in crypto started with a fake job offer from North Korean hackers to one of the game's developers.
- July 12, 2022
- 02:03 PM
- 2
-
Windows 10 KB5015807 and KB5015811 updates released
Microsoft has released the Windows 10 KB5015807 and KB5015811 cumulative updates for versions 21H2, version 21H1, version 20H2, and 1809 to fix security vulnerabilities and resolve bugs.
- July 12, 2022
- 02:00 PM
- 0
-
Microsoft July 2022 Patch Tuesday fixes exploited zero-day, 84 flaws
Today is Microsoft's July 2022 Patch Tuesday, and with it comes fixes for one actively exploited zero-day vulnerability and a total of 84 flaws.
- July 12, 2022
- 01:24 PM
- 0
-
Microsoft: Phishing bypassed MFA in attacks against 10,000 orgs
Microsoft says a massive series of phishing attacks has targeted more than 10,000 organizations starting with September 2021, using the gained access to victims' mailboxes in follow-on business email compromise (BEC) attacks.
- July 12, 2022
- 01:02 PM
- 0
-
New ‘Luna Moth’ hackers breach orgs via fake subscription renewals
A new data extortion group has been breaching companies to steal confidential information, threatening victims to make the files publicly available unless they pay a ransom.
- July 12, 2022
- 10:32 AM
- 0
-
Hackers can unlock Honda cars remotely in Rolling-PWN attacks
A team of security researchers found that several modern Honda car models have a vulnerable rolling code mechanism that allows unlocking the cars or even starting the engine remotely.
- July 11, 2022
- 06:10 PM
- 0
-
Massive Rogers outage caused by a maintenance update
Over the weekend, Rogers Communications CEO Tony Staffieri revealed the telecom company believes a maintenance update was what caused last week's massive outage.
- July 11, 2022
- 04:44 PM
- 0
-
Ransomware gang now lets you search their stolen data
Two ransomware gangs and a data extortion group have adopted a new strategy to force victim companies to pay threat actors to not leak stolen data.
- July 11, 2022
- 03:24 PM
- 0
-
Microsoft: Windows Autopatch is now generally available
Microsoft says that Windows Autopatch, an enterprise service that automatically keeps Windows and Microsoft 365 software up to date, is generally available starting today.
- July 11, 2022
- 01:21 PM
- 0
-
Microsoft says decision to unblock Office macros is temporary
Microsoft says last week's decision to roll back VBA macro auto-blocking in downloaded Office documents is only a temporary change.
- July 11, 2022
- 12:53 PM
- 1
-
How to auto block macros in Microsoft Office docs from the internet
With Microsoft temporarily rolling back a feature that automatically blocks macros in Microsoft Office files downloaded from the Internet, it is essential to learn how to configure this security setting manually. This article will explain why users should block macros and how you can block them in Microsoft Office.
- July 11, 2022
- 09:34 AM
- 0
-
New Google Chrome feature reduces CPU use to extend battery life
Google is testing a new 'Quick Intensive Throttling' feature that reduces CPU time by 10%, extending the battery life for laptops and mobile devices.
- July 10, 2022
- 11:05 AM
- 0
-
Maastricht University wound up earning money from its ransom payment
Maastricht University (UM), a Dutch university with more than 22,000 students, said last week that it has recovered the ransom paid after a ransomware attack that hit its network in December 2019.
- July 10, 2022
- 10:03 AM
- 0
