Microsoft News Articles

Recent news articles refferecing the vendors vulnerabilities.

favicon imageKaspersky

CVE-2024-43451 allows stealing NTLMv2 hash

Patch Tuesday, November 2024: CVE-2024-43451, used in real attacks, permits stealing an NTLMv2 hash with minimal interaction from the victim.

1 week ago

favicon imageHelp Net Security

How a Windows zero-day was exploited in the wild for months (CVE-2024-43451) - Help Net Security

CVE-2024-43451, a Windows zero-day vulnerability for which Microsoft released a fix on Tuesday, has been exploited since at least April 2024.

1 week ago

favicon imageSecurityWeek

Windows Zero-Day Exploited by Russia Triggered With File Drag-and-Drop, Delete Actions

Exploit for a Windows zero-day vulnerability (CVE-2024-43451) is executed by deleting files, drag-and-dropping them, or right clicking.

1 week ago

favicon imageBleepingComputer

Microsoft patches Windows zero-day exploited in attacks on Ukraine

Suspected Russian hackers were caught exploiting a recently patched Windows vulnerability as a zero-day in ongoing attacks targeting Ukrainian entities.

1 week ago

favicon imageKrebs on Security

Microsoft Patch Tuesday, November 2024 Edition

Microsoft today released updates to plug at least 89 security holes in its Windows operating systems and other software. November's patch batch includes fixes for two zero-day vulnerabilities that are already being exploited by attackers, as well as two other…

1 week ago

favicon imageCrowdStrike.com

November 2024 Patch Tuesday: Updates and Analysis | CrowdStrike

Microsoft has released security updates for 158 vulnerabilities, including three zero-days and four critical, for its November 2024 Patch Tuesday rollout.

1 week ago

favicon imageHelp Net Security

Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039) - Help Net Security

Microsoft drops fixes for 89 security issues in its products, two of which - CVE-2024-43451 and CVE-2024-49039 - are exploited by attackers.

1 week ago

favicon imageBleepingComputer

Microsoft Exchange adds warning to emails abusing spoofing flaw

Microsoft has disclosed a high-severity Exchange Server vulnerability that allows attackers to forge legitimate senders on incoming emails and make malicious messages a lot more effective.

1 week ago

favicon imagecyfirma

CVE-2024-30078 Remote Code Execution Vulnerability Analysis and Exploitation - CYFIRMA

Published On : 2024-08-22 EXECUTIVE SUMMARY CVE-2024-30078 reveals a severe vulnerability in the Wi-Fi drivers across multiple Microsoft Windows versions, potentially enabling threat actors within...

2 weeks ago

favicon imageCSO Online

A new SharePoint vulnerability is already being exploited

Microsoft SharePoint makes it simpler for enterprises to help employees discover documents on their internal network — but a recently exploited vulnerability is making easier for attackers to get inside the corporate network too.

3 weeks ago

favicon imageBleepingComputer

Microsoft SharePoint RCE bug exploited to breach corporate network

A recently disclosed Microsoft SharePoint remote code execution (RCE) vulnerability tracked as CVE-2024-38094 is being exploited to gain initial access to corporate networks.

3 weeks ago

favicon image

Windows Themes 0-day opens door to NTLM credential theft

There's a Windows Themes spoofing zero-day bug on the loose that allows attackers to steal people's NTLM credentials. That's the bad news. The good news: Acros Security's 0patch has developed a free...

3 weeks ago

favicon imageCyberSecurityNews

New Windows Theme Zero-Day Vulnerability Let Attackers Steal Credentials

New identical Windows Theme Zero-Day Vulnerability Let Attackers Steal Credentials vulnerability that might allow attackers to obtain NTLM credentials of compromised systems while fixing CVE-2024-38030, a medium-severity Windows Themes spoofing issue.

3 weeks ago

favicon image

Recurring Windows Flaw Could Expose User Credentials

Now a zero-day, the vulnerability enables NTLM hash theft, an issue that Microsoft has already fixed twice before.

3 weeks ago

favicon imageBleepingComputer

New Windows Themes zero-day gets free, unofficial patches

Free unofficial patches are now available for a new Windows Themes zero-day vulnerability that allows attackers to steal a target's NTLM credentials remotely.

3 weeks ago

favicon imageHelp Net Security

Patching problems: The "return" of a Windows Themes spoofing vulnerability - Help Net Security

Despite two patching attempts, a Windows Themes spoofing vulnerability still affects Microsoft's operating system.

4 weeks ago

favicon image

Windows 'Downdate' Attack Makes Patched PCs Vulnerable

Windows 11 machines remain open to downgrade attacks, where attackers can abuse the Windows Update process to revive a patched driver signature enforcement (DSE) bypass.

4 weeks ago

favicon imageThe Hacker News

Researchers Uncover OS Downgrade Vulnerability Targeting Microsoft Windows Kernel

Discover how a new attack technique bypasses Microsoft’s security, enabling OS downgrade attacks on Windows.

4 weeks ago

favicon imageHelp Net Security

Exploited: Cisco, SharePoint, Chrome vulnerabilities - Help Net Security

Fix these vulnerabilities in Cisco security appliances (CVE-2024-20481), Sharepoint (CVE-2024-38094), and Chrome (CVE-2024-4947).

1 month ago

favicon imageThe Register

Microsoft SharePoint RCE under active exploit

A Microsoft SharePoint bug that can allow an attacker to remotely inject code into vulnerable versions is under active exploitation, according to the US Cybersecurity and Infrastructure Security Agency...

1 month ago

favicon image

Microsoft SharePoint RCE under active exploit

A Microsoft SharePoint bug that can allow an attacker to remotely inject code into vulnerable versions is under active exploitation, according to the US Cybersecurity and Infrastructure Security Agency...

1 month ago

favicon imageThe Hacker News

CISA Warns of Active Exploitation of Microsoft SharePoint Vulnerability (CVE-2024-38094)

CISA alerts on active exploitation of a SharePoint flaw, urging federal agencies to apply patches quickly.

1 month ago

favicon imageSecurityWeek

CISA Warns Recent Microsoft SharePoint RCE Flaw Exploited in Attacks

CISA has added a recent Microsoft SharePoint Server remote code execution vulnerability to the KEV catalog.

1 month ago

favicon imageBleepingComputer

Exploit released for new Windows Server "WinReg" NTLM Relay attack

Proof-of-concept exploit code is now public for a vulnerability in Microsoft's Remote Registry client that could be used to take control of a Windows domain by downgrading the security of the authentication process.

1 month ago

favicon imageCyberSecurityNews

Windows Remote Registry Client EoP Flaw Exposes Systems to Relay Attacks

A critical elevation of privilege (EoP) vulnerability, identified as CVE-2024-43532, has been discovered in the Windows Remote Registry client. This vulnerability potentially allows attackers to relay NTLM authentication and gain unauthorized access to Windows systems.

1 month ago

favicon imageForbes

Microsoft Windows Deadline—10 Days To Update Or Stop Using Your PC

Government issues emergency update warning for all Windows users, with existing security fixes likely “insufficient.”

1 month ago

favicon imageRisky Biz

The Feds secretly disrupted Anonymous Sudan back in March

Iranian hackers sell access to US critical infrastructure; North Korea hacked ad platforms to deploy an IE zero-day; hacker "USDoD" arrested in Brazil.

1 month ago

favicon imageThe Cyber Express

CISA Adds 3 Known Exploited Vulnerabilities To Catalog

CISA highlights 3 new Known Exploited Vulnerabilities—CVE-2024-30088, CVE-2024-9680, and CVE-2024-28987—emphasizing the urgent need to act.

1 month ago

favicon imageThe Hacker News

North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware

ScarCruft exploits a patched Windows zero-day, CVE-2024-38178, infecting devices with RokRAT malware.

1 month ago

favicon imageCybersecurityNews

CISA Warns of Three Vulnerabilities Actively Exploited in the Wild

CISA has issued an urgent alert regarding three vulnerabilities exploited in the wild, affecting products from Microsoft, Mozilla, and SolarWinds

1 month ago

favicon imageCybersecurityNews

PoC Exploit Released For Windows Kernel-Mode Drivers Privilege Escalation Flaw

A critical vulnerability in Windows Kernel-Mode Drivers has been exposed with the release of a Proof-of-Concept (PoC) exploit, allowing attackers to escalate privileges to SYSTEM level.

1 month ago

favicon imageSecurityWeek

Iranian Cyberspies Exploiting Recent Windows Kernel Vulnerability 

The Iran-linked APT OilRig has intensified cyber operations against the United Arab Emirates and the broader Gulf region.

1 month ago

favicon imageBleepingComputer

Iranian hackers now exploit Windows flaw to elevate privileges

The Iranian state-sponsored hacking group APT34, aka OilRig, has recently escalated its activities with new campaigns targeting government and critical infrastructure entities in the United Arab Emirates and the Gulf region.

1 month ago

favicon imageThe Hacker News

OilRig Exploits Windows Kernel Flaw in Espionage Campaign Targeting UAE and Gulf

OilRig exploits a Windows kernel flaw in a cyber espionage campaign targeting UAE networks, leveraging backdoors and privilege escalation.

1 month ago

favicon imageForbes

Update Now As Critical Windows 9.8/10 Vulnerability Confirmed

Security professionals have issued an update warning for Windows users as a critical vulnerability in Microsoft’s configuration manager is confirmed.

1 month ago

favicon imageHelp Net Security

Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools - Help Net Security

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft patches two zero-days exploited in the wild

1 month ago

favicon imageTrend Micro

Earth Simnavaz Levies Advanced Cyberattacks Against UAE and Gulf Regions

APT & Targeted Attacks Trend Micro's investigation into the recent activity of Earth Simnavaz provides new insights into the APT group’s evolving tactics and the immediate threat it poses to critical...

1 month ago

favicon imageThe Cyber Express

Microsoft Patch Tuesday: October 2024 CVE Updates

Microsoft’s October 2024 Patch Tuesday addresses 117 CVEs, including critical zero-day vulnerabilities.

1 month ago

favicon imageKrebs on Security

Patch Tuesday, October 2024 Edition

Microsoft today released security updates to fix at least 117 security holes in Windows computers and other software, including two vulnerabilities that are already seeing active attacks. Also, Adobe plugged 52 security holes across a range of products, and Apple…

1 month ago

favicon imageCrowdStrike.com

October 2024 Patch Tuesday: Updates and Analysis | CrowdStrike

Microsoft has released security updates for 118 vulnerabilities, including two zero-days and three critical, for its October 2024 Patch Tuesday rollout.

1 month ago

favicon imageGBHackers

RCE Vulnerability (CVE-2024-30052) Allow Attackers To Exploit Visual Studio via Dump Files

The researcher investigated the potential security risks associated with debugging dump files in Visual Studio by focusing on vulnerabilities

2 months ago

favicon imageCybersecurityNews

Top 10 Vulnerabilities That Were Exploited the Most In 2023

Some of the vulnerabilities were added to the CISA’s Known Exploited Vulnerabilities catalog marking them as extremely important to patch.

2 months ago

favicon imageForbes

Microsoft Windows ‘Critical Vulnerability’ Warning—You Have 72 Hours To Update Your PC

Government warns users to update PCs by October 7 or stop using Windows.

2 months ago

favicon imageBankInfoSecurity

Breach Roundup: AI 'Nudify' Sites Serve Malware

This week, AI nudify sites spread malware, BEC scammers head to prison, London man charged with hacking, and a Spanish insurance company with a breach. Also, a

2 months ago

favicon imageCybersecurityNews

PoC Exploit Released for Microsoft Office 0-day Flaw - CVE-2024-38200

Security researchers have released a proof-of-concept (PoC) exploit for the recently disclosed Microsoft Office vulnerability CVE-2024-38200, which could allow attackers to capture users' NTLMv2 hashes.

2 months ago

favicon image

Novel Exploit Chain Enables Windows UAC Bypass

Adversaries can exploit CVE-2024-6769 to jump from regular to admin access without triggering UAC, but Microsoft says it's not really a vulnerability.

2 months ago

favicon imageTheCyberThrone

TheCyberThrone Security Week In Review – September 21, 2024

Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the week ending Saturday, September 21, 2024. Microsoft Kernel Vulnerability CVE-2024-37985 exploited Microsoft has confirmed the exploitation of a Windows Kernel vuln...

2 months ago

favicon imageThe Register

Microsoft confirms IE zero-day exploited in sneaky update

Analysis Microsoft, in a low-key update to its September Patch Tuesday disclosures, has confirmed a just-fixed Internet Explorer vulnerability was exploited as a zero-day before it could be patched. Redmond...

2 months ago

favicon image

Microsoft confirms IE zero-day exploited in sneaky update

Analysis Microsoft, in a low-key update to its September Patch Tuesday disclosures, has confirmed a just-fixed Internet Explorer vulnerability was exploited as a zero-day before it could be patched. Redmond...

2 months ago

favicon imageSecurity Affairs

Recently patched Windows flaw CVE-2024-43461 was actively exploited as a zero-day before July 2024

Microsoft warns that the recently patched Windows flaw (CVE-2024-43461) was actively exploited as a zero-day before July 2024.

2 months ago