Cyber Signals: Inside the growing risk of gift card fraud
In the ever-evolving landscape of cyberthreats, staying ahead of malicious actors is a constant challenge. Microsoft Threat Intelligence has observed...
News
Google Chrome Remote Code Execution Vulnerability
A vulnerability has been identified in Google Chrome. A remote attacker could exploit this vulnerability to trigger denial of service condition...
ChromeOS Multiple Vulnerabilities
Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...
US-CERT Vulnerability Summary for the Week of May 13, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Microsoft Edge Multiple Vulnerabilities
Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger denial of...
Multiple Vulnerabilities in VMWare Workstation and Fusion
VMware has released security updates addressing multiple vulnerabilities (CVE-2024-22267, CVE-2024-22268, CVE-2024-22269 and CVE-2024-22270) affecting their Workstation and Fusion products.The vulnerabilities...
Google Chrome Remote Code Execution Vulnerability
A vulnerability was identified in Google Chrome. A remote attacker could exploit this vulnerability to trigger remote code execution and...
Threat actors misusing Quick Assist in social engineering attacks leading to ransomware
Since mid-April 2024, Microsoft Threat Intelligence has observed the threat actor Storm-1811 misusing the client management tool Quick Assist to...
Microsoft Monthly Security Update (May 2024)
Microsoft has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesDeveloper Tools Medium RiskRemote Code Execution Denial of Service Windows High...
Google Chrome Multiple Vulnerabilities
Multiple vulnerabilities were identified in Google Chrome. A remote attacker could exploit some of these vulnerabilities to trigger spoofing, remote...
F5 Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in F5 Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of...
May 2024 Monthly Patch
Microsoft has released security patches to address multiple vulnerabilities in their software and products.The vulnerabilities that have been classified as...
US-CERT Vulnerability Summary for the Week of May 6, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Active Exploitation of Zero-Day Vulnerability in Google Chrome
Google has released security updates addressing a zero-day vulnerability (CVE-2024-4671) affecting their Chrome browser on Windows, Mac and Linux systems....
Microsoft Edge Multiple Vulnerabilities
Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger denial of...
Google Chrome Remote Code Execution Vulnerability
A vulnerability was identified in Google Chrome. A remote attacker could exploit this vulnerability to trigger remote code execution and...
Critical Vulnerability in Tinyproxy Instances
Tinyproxy has released security fixes addressing a critical vulnerability (CVE-2023-49606) in their internet-exposed instances. The vulnerability has a Common Vulnerability...
US-CERT Vulnerability Summary for the Week of April 29, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Active Exploitation of Critical Vulnerability in WordPress Automatic Plugin
ValvePress has released security updates to address a critical vulnerability (CVE-2024-27956) impacting WordPress Automatic plugin. This vulnerability has a Common...
High-Severity Vulnerability in R Programming Language
R Project has released updates addressing a high-severity vulnerability (CVE-2024-27322) affecting the R programming language. This vulnerability has a Common...
“Dirty stream” attack: Discovering and mitigating a common vulnerability pattern in Android apps
Microsoft discovered a path traversal-affiliated vulnerability pattern in multiple popular Android applications that could enable a malicious application to overwrite...
GitLab Multiple Vulnerabilities
Multiple vulnerabilities were identified in GitLab. A remote attacker could exploit some of these vulnerabilities to trigger data manipulation, elevation of...
Microsoft Monthly Security Update (April 2024)
Microsoft has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesBrowser Low RiskSpoofing Windows High RiskSecurity Restriction Bypass Remote Code Execution...
Key Insights from the 2024 Data Breach Investigations Report
The 2024 Data Breach Investigations Report (DBIR) presents an extensive analysis of the current state of cybersecurity, documenting over 30,458...
