Cybersecurity researchers have discovered a case of “forced authentication” that could be exploited to leak a Windows user’s NT LAN Manager (NTLM)...
North Korean threat actors are actively exploiting a critical security flaw in JetBrains TeamCity to opportunistically breach vulnerable servers, according to Microsoft....
The advanced persistent threat (APT) actor known as ToddyCat has been linked to a new set of malicious tools that are designed...
Microsoft on Wednesday said that a user containment feature in Microsoft Defender for Endpoint helped thwart a “large-scale remote encryption attempt” made...
Microsoft has released its Patch Tuesday updates for October 2023, addressing a total of 103 flaws in its software, two of which...
Microsoft has linked the exploitation of a recently disclosed critical flaw in Atlassian Confluence Data Center and Server to a nation-state actor...
A Gaza-based threat actor has been linked to a series of cyber attacks aimed at Israeli private-sector energy, defense, and telecommunications organizations....
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws to its Known Exploited Vulnerabilities (KEV) catalog due...
A set of memory corruption flaws have been discovered in the ncurses (short for new curses) programming library that could be exploited...
Microsoft is warning of a new phishing campaign undertaken by an initial access broker that involves using Teams messages as lures to...
Microsoft has released software fixes to remediate 59 bugs spanning its product portfolio, including two zero-day flaws that have been actively exploited...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched security flaw in Microsoft’s .NET and Visual Studio products...
Microsoft has patched a total of 74 flaws in its software as part of the company’s Patch Tuesday updates for August 2023,...
Microsoft on Friday disclosed that it has addressed a critical security flaw impacting Power Platform, but not before it came under criticism...
The defense sector in Ukraine and Eastern Europe has been targeted by a novel .NET-based backdoor called DeliveryCheck (aka CAPIBAR or GAMEDAY)...
Microsoft on Tuesday revealed that it repelled a cyber attack staged by a Chinese nation-state actor targeting two dozen organizations, some of...
Cybersecurity researchers have unearthed a novel rootkit signed by Microsoft that’s engineered to communicate with an actor-controlled attack infrastructure. Trend Micro has...
Microsoft on Tuesday released updates to address a total of 132 new security flaws spanning its software, including six zero-day flaws that...
A Microsoft Windows policy loophole has been observed being exploited primarily by native Chinese-speaking threat actors to forge signatures on kernel-mode drivers....
A developing piece of ransomware called Big Head is being distributed as part of a malvertising campaign that takes the form of...
Microsoft has rolled out fixes for its Windows operating system and other software components to remediate major security shortcomings as part of...