Microsoft

2 minute read

Critical Windows Kerberos Flaw Exposes Millions of Servers to Attack

A critical vulnerability in the Windows Kerberos authentication protocol poses a significant risk to millions of servers. Microsoft…

byDeeba Ahmed

November 19, 2024

3 minute read

Microsoft Power Pages Misconfigurations Expose Millions of Records Globally

SaaS Security firm AppOmni has identified misconfigurations in Microsoft Power Pages that can lead to severe data breaches.…

byDeeba Ahmed

November 15, 2024

3 minute read

Microsoft’s November Patch Tuesday Fixes 91 Vulnerabilities, 4 Zero-Days

Microsoft’s November 2024 Patch Tuesday update fixes 91 security vulnerabilities, including four zero-day vulnerabilities. Critical fixes address actively…

byWaqas

November 12, 2024

3 minute read

Microsoft Bookings Flaw Enables Account Hijacking and Impersonation

A vulnerability in Microsoft Bookings can expose your organization to serious security risks. Learn how attackers can exploit…

byWaqas

November 11, 2024

3 minute read

Hackers Use Excel Files to Deliver Remcos RAT Variant on Windows

This article explains the inner workings of the Remcos RAT, a dangerous malware that uses advanced techniques to…

byDeeba Ahmed

November 9, 2024

Azure AI Vulnerabilities Allowed Bypass of Moderation Safeguards

3 minute read

Security

Azure AI Vulnerabilities Allowed Attacks to Bypass Moderation Safeguards

Mindgard researchers uncovered critical vulnerabilities in Microsoft’s Azure AI Content Safety service, allowing attackers to bypass its safeguards…

byDeeba Ahmed

November 1, 2024

3 minute read

Russian Cozy Bear Hackers Phish Critical Sectors with Microsoft, AWS Lures

Russian state-sponsored hackers Cozy Bear are targeting over 100 organizations globally with a new phishing campaign. This sophisticated…

byWaqas

October 30, 2024

3 minute read

“HM Surf” macOS Flaw Lets Attackers Access Camera and Mic – Patch Now!

Researchers at Microsoft discovered a new macOS vulnerability, “HM Surf” (CVE-2024-44133), which bypasses TCC protections, allowing unauthorized access…

byWaqas

October 20, 2024

4 minute read

Microsoft September 2024 Patch Tuesday Fixes 79 Flaws, Including 4 Zero-Days

Microsoft's September 2024 Patch Tuesday is here. Make sure you’ve applied the necessary patches!

byWaqas

September 10, 2024

2 minute read

Hackers Could Exploit Microsoft Teams on macOS to Steal Data

Cisco Talos reveals 8 vulnerabilities in Microsoft’s macOS apps, exploiting TCC framework weaknesses. Hackers can bypass security, inject…

byDeeba Ahmed

August 20, 2024

The Latest

SquareX Brings Industry’s First Browser Detection Response Solution to AISA Melbourne CyberCon 2024

US and UK Military Social Network “Forces Penpals” Exposes SSN, PII Data

Hackers Exploit Misconfigured Jupyter Servers for Illegal Sports Streaming

ANY.RUN Sandbox Now Automates Interactive Analysis of Complex Cyber Attack Chains

Microsoft

Critical Windows Kerberos Flaw Exposes Millions of Servers to Attack

Microsoft Power Pages Misconfigurations Expose Millions of Records Globally

Microsoft’s November Patch Tuesday Fixes 91 Vulnerabilities, 4 Zero-Days

Microsoft Bookings Flaw Enables Account Hijacking and Impersonation

Hackers Use Excel Files to Deliver Remcos RAT Variant on Windows

Azure AI Vulnerabilities Allowed Attacks to Bypass Moderation Safeguards

Russian Cozy Bear Hackers Phish Critical Sectors with Microsoft, AWS Lures

“HM Surf” macOS Flaw Lets Attackers Access Camera and Mic – Patch Now!

Microsoft September 2024 Patch Tuesday Fixes 79 Flaws, Including 4 Zero-Days

Hackers Could Exploit Microsoft Teams on macOS to Steal Data

SquareX Brings Industry’s First Browser Detection Response Solution to AISA Melbourne CyberCon 2024

ANY.RUN Sandbox Now Automates Interactive Analysis of Complex Cyber Attack Chains

Sweet Security Announces Availability of its Cloud Native Detection & Response Platform on the AWS Marketplace

ATPC Cyber Forum to Focus on Next Generation Cybersecurity and Artificial Intelligence Issues

INE Launches Initiative to Optimize Year-End Training Budgets with Enhanced Cybersecurity and Networking Programs