Categories: News Tags: malware Tags: ZINC Tags: microsoft Tags: infection Tags: C&C Tags: open source Tags: job offer Tags: fake Tags: LinkedIn A North Korean ZINC group is accused of creating compromised versions of KiTTY, PuTTY, TightVNC, and other popular open-source software apps |
The post Bogus job offers hide trojanised open-source software appeared first on Malwarebytes Labs.
Read more
Credit to Author: Paul Ducklin| Date: Sat, 01 Oct 2022 14:05:59 +0000
Who’s affected, what you can do while waiting for Microsoft’s patches, and how to plan your threat hunting…
Read moreCredit to Author: Katie McCafferty| Date: Sat, 01 Oct 2022 04:21:00 +0000
MSTIC observed activity related to a single activity group in August 2022 that achieved initial access and compromised Exchange servers by chaining CVE-2022-41040 and CVE-2022-41082 in a small number of targeted attacks.
The post Analyzing attacks using the Exchange vulnerabilities CVE-2022-41040 and CVE-2022-41082 appeared first on Microsoft Security Blog.
Read more
Credit to Author: Paul Ducklin| Date: Fri, 30 Sep 2022 13:25:11 +0000
Double-play 0-day in Exchange – what you need to know, and what you can do
Read moreCredit to Author: Katie McCafferty| Date: Thu, 29 Sep 2022 16:00:00 +0000
In recent months, Microsoft detected weaponization of legitimate open-source software by an actor the Microsoft Threat Intelligence Center (MSTIC) tracks as ZINC, targeting employees at media, defense and aerospace, and IT service provider organizations in the US, UK, India, and Russia.
The post ZINC weaponizing open-source software appeared first on Microsoft Security Blog.
Read moreCredit to Author: Quickheal| Date: Wed, 21 Sep 2022 09:26:18 +0000
Microsoft has recently come up with a new update called Windows 11 22H2. The below article highlights…
The post Quick Heal Supports Windows 11 version 22H2 appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.
Read more
Microsoft today announced the rollout of the first major feature upgrade to Windows 11. Many of the changes are incremental and focus on user interface and productivity enhancements, but there are some useful additions — including a new password security feature.
Mostly, Windows 11 version 22H2, known as the Windows 11 2022 Update, is about polishing up the user experience introduced with Windows 11, while rounding out the feature set with some additional enterprise-targeted capabilities, according to Stephen Kleynhans, a vice president analyst at research firm Gartner.
With 63 updates affecting Windows, Microsoft Office and the Visual Studio and .NET platforms — and reports of three publicly exploited vulnerabilities (CVE-2022-37969, CVE-2022-34713, CVE-2021-40444) — this month’s Patch Tuesday release gets a “Patch Now” priority. Key testing areas include printing, Microsoft Word, and in general application un-installations. (The Microsoft Office, .NET and browser updates can be added to your standard release schedules.)
Categories: News Tags: CVE-2022-37969 Tags: CVE-2022-23960 Tags: CVE-2022-35805 Tags: CVE-2022-34700 Tags: CVE-2022-34718 Tags: CVE-2022-34721 Tags: CVE-2022-34722 Tags: Microsoft Tags: Adobe Tags: Android Tags: Apple Tags: Cisco Tags: Google Tags: Samsung Tags: SAP Tags: VMWare The September 2022 Patch Tuesday updates includes two zero-day vulnerabilities, one of which is known to be used in attacks |
The post Update now! Microsoft patches two zero-days appeared first on Malwarebytes Labs.
Read more
Credit to Author: Matt Wixey| Date: Tue, 13 Sep 2022 18:38:14 +0000
There are fewer bugs in September’s update than in previous months, with RCE vulns making up the bulk of the addressed CVEs
Read more