Credit to Author: Paul Ducklin| Date: Mon, 30 May 2022 23:01:55 +0000
News has emerged of a “feature” in Office that has been abused as a zero-day bug to run evil code. Turning off macros doesn’t help!
Read moreCredit to Author: Pieter Arntz| Date: Tue, 31 May 2022 12:27:32 +0000
Dutch scientists have demonstrated the next step towards a quantum-based Internet that will make communications immediate and private
The post Is quantum teleportation the future of secure communications? appeared first on Malwarebytes Labs.
Read more
Credit to Author: Hitomi Kimura| Date: Tue, 31 May 2022 00:00:00 +0000
Users of WSO2 products are advised to update their respective products and platforms or to apply the temporary mitigation steps immediately.
Read more
Credit to Author: Evan Schuman| Date: Tue, 31 May 2022 02:30:00 -0700
One of the bigger threats to enterprise cybersecurity involves re-purposed third-party code and open-source code, so you’d
think Google’s Assured Open Source Software service would be a big help.
Think again.
Here’s Google’s pitch: “Assured OSS enables enterprise and public sector users of open source software to easily incorporate the same OSS packages that Google uses into their own developer workflows. Packages curated by the Assured OSS service are regularly scanned, analyzed, and fuzz-tested for vulnerabilities; have corresponding enriched metadata incorporating Container/Artifact Analysis data; are built with Cloud Build including evidence of verifiable SLSA-compliance; are verifiably signed by Google; and are distributed from an Artifact Registry secured and protected by Google.”
Credit to Author: Pieter Arntz| Date: Mon, 30 May 2022 18:09:26 +0000
Researchers around the world are working to understand a new remote code vulnerability in Microsoft Office dubbed Follina.
The post [Updated]Microsoft Office zero-day “Follina”—it’s not a bug, it’s a feature! (It’s a bug) appeared first on Malwarebytes Labs.
Read more
Explore the latest findings from Trend Micro’s Cyber Risk Index (2H’2021) and how to better manage people to minimize cyber risk across the digital attack surface.
Credit to Author: Andrew Brandt| Date: Tue, 31 May 2022 00:41:42 +0000
MSDT.exe misuse in May makes for Memorial Day Monday mayhem
Read more
Credit to Author: Paul Ducklin| Date: Mon, 30 May 2022 23:01:55 +0000
News has emerged of a “feature” in Office that has been abused as a zero-day bug to run evil code. Turning off macros doesn’t help!
Read moreCredit to Author: Pieter Arntz| Date: Mon, 30 May 2022 18:09:26 +0000
Researchers around the world are working to understand a new remote code vulnerability in Microsoft Office dubbed Follina.
The post Microsoft Office zero-day “Follina”—it’s not a bug, it’s a feature! (It’s a bug) appeared first on Malwarebytes Labs.
Read more
Credit to Author: Paul Ducklin| Date: Mon, 30 May 2022 16:59:12 +0000
Home delivery scams are getting leaner, and meaner, and more likely to “look about right”. Here’s an example to show you what we mean…
Read more