This Windows Update exploit is downright terrifying
Windows Update may occasionally backfire with faulty patches , but for the most part, it’s meant to keep us safe from the latest threats....
top of page
Search
Aug 8
“UnOAuthorized” Microsoft Entra ID (Azure AD) Vulnerability Let Attackers Gain Global Admin Access
According to the research team at Semperis, the vulnerability was discovered in the OAuth 2.0 scope (permissions) of Entra ID, which...
Aug 6
Design flaw could allow hackers to roll back Microsoft Windows updates
Some of Microsoft’s most important tools for protecting Windows users from malicious hackers can be twisted into being used in attacks,...
Jul 30
Some companies pay ransomware attackers multiple times, survey finds
Nearly one-third of companies that suffered a ransomware attack paid a ransom four or more times in the past 12 months to regain access...
Apr 21
Researchers claim Windows Defender can be fooled into deleting databases
Researchers at US/Israeli infosec outfit SafeBreach last Friday discussed flaws in Microsoft and Kaspersky security products that can...
Feb 23
Semperis Researchers Discover a New Malicious Variant of the Attack Technique used in the 2020 SolarWinds Breach
Semperis announced that its security research team discovered a new variant of the notorious Golden SAML attack technique and dubbed it...
Dec 10, 2023
New PoolParty Process Injection Techniques Outsmart Top EDR Solutions
A new collection of eight process injection techniques, collectively dubbed PoolParty, could be exploited to achieve code execution in...
Nov 7, 2023
Researchers Uncover Undetectable Crypto Mining Technique on Azure Automation
Cybersecurity researchers have developed what's the first fully undetectable cloud-based cryptocurrency miner leveraging the Microsoft...
Oct 19, 2023
Drops are changing the future of presbyopia treatment
In our pursuit of novelty, we sometimes forget that significant treatment breakthroughs have been made thanks to the reformulation or...
Aug 14, 2023
Researchers discover vulnerabilities in Moovit software allowing free subway rides
Researchers at cybersecurity firm SafeBreach said they recently disclosed the vulnerabilities to Israeli firm Moovit, which helps users...
bottom of page