vulnerabilitiesDogWalk and other vulnerabilities
Microsoft has released patches for more than 140 vulnerabilities, some of which need to be closed as soon as possible.
microsoft
53 articles
ChronicleILOVEYOU: the virus that loved everyone
We recall the story of the ILOVEYOU worm — one of the most infamous viruses from 22 years ago.
A passwordless future?
Let’s see how Google, Microsoft and Apple can work together to do away with passwords.
Actively exploited vulnerability in Windows
Time to update Windows! Microsoft has released patches for several dozen vulnerabilities, one of which cybercriminals are actively exploiting.
A bunch of vulnerabilities in Windows, one already exploited
Microsoft patches 128 vulnerabilities in a list of products, including Windows and its components.
Another year, another Tuesday
Microsoft patches more than a 100 vulnerabilities in Windows 10 and 11, Windows Server 2019 and 2022, Exchange Server, Office, and Edge browser.
2021 information security memes and tweets
Remembering 2021’s most interesting infosec events — in memes and tweets.
OMI vulnerabilities threaten Linux virtual machines on Microsoft Azure
The Open Management Infrastructure agent, with four vulnerabilities, is being automatically installed on virtual Linux machines on Microsoft Azure.
Internet Explorer vulnerability threatens Microsoft Office users
An unpatched vulnerability in the MSHTML engine is enabling attacks on Microsoft Office users.
Apps built with Microsoft Power Apps may leak users’ personal information
Misconfigured applications built with Microsoft Power Apps leave millions of personally identifiable information entries exposed.
phishingGoogle Docs used for Office 365 credential phishing
Phishers are using Google online services to take over Microsoft online service accounts.
CVE-2021-28310: A broken window
A zero-day vulnerability in Microsoft Windows may already have been exploited.
Massively exploited vulnerabilities in MS Exchange Server
Attackers exploit four dangerous vulnerabilities in Microsoft Exchange to get a foothold in the corporate network.
Zerologon vulnerability threatens domain controllers
The CVE-2020-1472 vulnerability in the Netlogon protocol, aka Zerologon, lets attackers hijack domain controllers.
CVE-2020-1350: Vulnerability in Windows DNS servers
Microsoft has released a patch for a critical RCE vulnerability in Windows Server systems.
windowsZero-day vulnerabilities in Adobe Type Manager Library affects multiple Windows OSs
Microsoft has posted a security advisory about vulnerabilities in Adobe Type Manager Library, which are already being exploited by cybercriminals.
CVE-2020-0796: New vulnerability in SMB protocol
Microsoft has released a patch for newly discovered critical vulnerability CVE-2020-0796 in the network protocol SMB 3.1.1.
FAQ: Microsoft, Kaspersky and KB4524244 security update issues
What is the story with Microsoft, Kaspersky and KB 4524244 security update all about?
spam
Kaspersky LabCybersecurity depends on partnership
Microsoft changes its approach to cybersecurity solutions in response to partner feedback
How your PC can be infected with just one email you didn’t actually read
We’ve told you this time and time again: never click suspicious links, never open files received from unknown sources, always delete mail from untrusted senders. While all of these pieces