SecurityWeek
Information Stealer Exploits Windows SmartScreen Bypass
Attackers exploit a recent Windows SmartScreen bypass vulnerability to deploy the Phemedrone information stealer.
Security Affairs
Phemedrone campaign exploits Windows smartScreen bypass
Threat actors exploit a recent Windows SmartScreen bypass flaw CVE-2023-36025 to deliver the Phemedrone info stealer.
CSO
Patched Windows SmartScreen bug actively exploited in Phemedrone infections
Phemedrone infostealer campaign has been found to exploit the Windows SmartScreen vulnerability for initial infections.
Cyber Security News
Hackers Exploiting Windows Defender SmartScreen Flaw to Hijack Computers
Hackers actively target and exploit Windows Defender SmartScreen to deceive users and deliver malicious content by creating convincing, misleading websites or applications.
Bleeping Computer
Windows SmartScreen flaw exploited to drop Phemedrone malware
A Phemedrone information-stealing malware campaign exploits a Microsoft Defender SmartScreen vulnerability (CVE-2023-36025) to bypass Windows security prompts when opening URL files.
Cyber Security News
Water Hydra Group Exploits Microsoft Defender SmartScreen Zero-Day Flaw
Threat actors exploit Microsoft Defender SmartScreen zero-day flaws to circumvent the security mechanisms designed to protect users.
The Hacker News
New Mispadu Banking Trojan Exploiting Windows SmartScreen Flaw
Cybercriminals are targeting Mexican users with a new variant of the Mispadu banking malware, exploiting a patched Windows SmartScreen bypass flaw
The Hacker News
DarkMe Malware Targets Traders Using Microsoft SmartScreen Zero-Day Vulnerability
Cybercriminals exploit a zero-day flaw in Microsoft Defender SmartScreen to target financial traders with sophisticated malware!
Cyber Security News
Phemedrone Stealer Exploits Windows SmartScreen Flaw to Steal Sensitive Data
Phemedrone Stealer, a sophisticated malware that exploits a vulnerability in Microsoft Windows Defender SmartScreen, CVE-2023-36025.
Bleeping Computer
Hackers abuse Windows SmartScreen flaw to drop DarkGate malware
A new wave of attacks by the DarkGate malware operation exploits a now-fixed Windows Defender SmartScreen vulnerability to bypass security checks and automatically install fake software installers.
Bleeping Computer
Hackers exploit Windows SmartScreen flaw to drop DarkGate malware
A new wave of attacks by the DarkGate malware operation exploits a now-fixed Windows Defender SmartScreen vulnerability to bypass security checks and automatically install fake software installers.
Trend Micro
CVE-2024-21412: Water Hydra Targets Traders with Microsoft Defender SmartScreen Zero-Day
The APT group Water Hydra has been exploiting the zero-day Microsoft Defender SmartScreen vulnerability (CVE-2024-21412) in its campaigns targeting financial market traders. This vulnerability, which has now been patched by Microsoft, was discovered and disclosed by the Trend Micro Zero Day Initiative.
HACKRead
Windows Defender SmartScreen Vulnerability Exploited with Phemedrone Stealer
The vulnerability was patched on November 14, 2023, but the Cybersecurity and Infrastructure Security Agency (CISA) added it to the Known Exploited Vulnerabilities (KEV) list due to evidence of in-the-wild exploitation.
Trend Micro
SmartScreen Vulnerability: CVE-2024-21412 Facts and Fixes
This entry aims to provide additional context to CVE-2024-21412, how it can be used by threat actors, and how Trend protects customers from this specific vulnerability.
DarkReading
Windows SmartScreen Bypass Flaw Exploited to Drop DarkGate RAT
Attackers use Google redirects in their phishing attack leveraging a now-patched vulnerability that aims to spread the multifaceted malware.
DarkReading
Proof of Concept Exploit Publicly Available for Critical Windows SmartScreen Flaw
Threat actors were actively exploiting CVE-2023-36025 before Microsoft patched it in November.
Cyber Security News
Hackers Exploiting Windows SmartScreen Zero-day Vulnerability to Deploy Remcos RAT
Microsoft released multiple security patches as part of their Patch Tuesday in which three zero-day vulnerabilities were also patched.
Cyber Security News
Windows SmartScreen & DirectX Graphics Zero-day Flaw Let Attacker Gain Admin Privilege
Microsoft releases a few patches in December normally, and this year is no exception. Microsoft Patch for December 2022, a total of 52 vulnerabilities in Microsoft Windows and Windows Components, Azure, Office and Office Components, SysInternals, Microsoft Edge (Chromium-based), SharePoint Server, and the.NET framework was fixed by security patches released on Tuesday.
Trend Micro
CVE-2024-21412: DarkGate Operators Exploit Microsoft Windows SmartScreen Bypass in Zero-Day Campaign
In addition to our Water Hydra APT zero day analysis, the Zero Day Initiative (ZDI) observed a DarkGate campaign which we discovered in mid-January 2024 where DarkGate operators exploited CVE-2024-21412.
ZDNet
Microsoft Patch Tuesday fixes six critical vulnerabilities
One moderate vulnerability that's already exploited impacts the Windows SmartScreen Security Feature.
Infosecurity News
Water Hydra’s Zero-Day Attack Chain Targets Financial Traders
CVE-2024-21412 was used to evade Microsoft Defender SmartScreen and implant victims with DarkMe
DarkReading
Exploit for Critical Windows Defender Bypass Goes Public
Threat actors were actively exploiting CVE-2023-36025 in Windows SmartScreen as a zero-day vulnerability before Microsoft patched it in November.
Bleeping Computer
Microsoft fixes Windows zero-day exploited in ransomware attacks
Microsoft has patched another zero-day bug used by attackers to circumvent the Windows SmartScreen cloud-based anti-malware service and deploy Magniber ransomware payloads without raising any red flags.
Bleeping Computer
Hackers used new Windows Defender zero-day to drop DarkMe malware
Microsoft has patched today a Windows Defender SmartScreen zero-day exploited in the wild by a financially motivated threat group to deploy the DarkMe remote access trojan (RAT).
Bleeping Computer
Microsoft patches Windows zero-day used to drop ransomware
Microsoft has fixed a security vulnerability used by threat actors to circumvent the Windows SmartScreen security feature and deliver payloads in Magniber ransomware attacks.
Trend Micro
CVE-2023-36025 Exploited for Defense Evasion in Phemedrone Stealer Campaign
This blog delves into the Phemedrone Stealer campaign's exploitation of CVE-2023-36025, the Windows Defender SmartScreen Bypass vulnerability, for its defense evasion and investigates the malware's payload.
The Cyber Express
CISA Adds 2 Critical Microsoft Windows Vulnerabilities Exploited by Threat Actors
CISA has added two new actively exploited vulnerabilities to its Known Exploited Vulnerabilities Catalog. These vulnerabilities, identified as CVE-2024-21412 and
SC Magazine
Microsoft patches 2 exploited zero-days, 5 critical vulnerabilities
The fixes were among 73 the software giant released in this February's Patch Tuesday.
Security Affairs
CISA adds Microsoft Windows bugs to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds 2 Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog.
DarkReading
Attackers Exploit Microsoft Security-Bypass Zero-Day Bugs
The Water Hydra cyberattacker group is one adversary using the zero-days to get past built-in Windows protections.
The Record
CISA adds three Microsoft Patch Tuesday bugs to vulnerability list
The top cybersecurity agency in the U.S. warned that hackers are exploiting three vulnerabilities disclosed by Microsoft on Tuesday.
The Hacker News
Hackers Weaponize Windows Flaw to Deploy Crypto-Siphoning Phemedrone Stealer
Cybercriminals are weaponizing the CVE-2023-36025 Windows vulnerability to deploy Phemedrone Stealer, an open-source information stealer
Infosecurity News
Phemedrone Stealer Targets Windows Defender Flaw Despite Patch
The malware targets browsers, steals crypto wallet and messaging app data, and collects system information
Security Affairs
Microsoft Patch Tuesday fix Outlook zero-day actively exploited
Microsoft Patch Tuesday updates for March 2023 addressed 74 vulnerabilities, including a Windows zero-day exploited in ransomware attacks. Microsoft Patch Tuesday security updates for March 2023 addressed 74 new vulnerabilities in Microsoft Windows and Windows Components; Office and Office Components; Edge (Chromium-based); Microsoft Dynamics; Visual Studio; and Azure. Six of the fixed issues are rated […]
Security Affairs
Microsoft Patch Tuesday for February 2024 fixed 2 actively exploited 0-days
Microsoft Patch Tuesday security updates for February 2024 addressed 71 flaws, two of which are actively exploited in the wild.
HACKRead
Mispadu Stealer's New Variant Targets Browser Data of Mexican Users
Mispadu Stealer targeted Spanish- and Portuguese-speaking victims, but the new variant aims at URLs associated with Mexican citizens.
Bleeping Computer
Windows 11 gets phishing protection boost and SHA-3 support
Microsoft announced that the new Windows 11 build rolling out to Insiders in the Canary channel comes with increased protection against phishing attacks and support for SHA-3 cryptographic hash functions.
The Hacker News
Microsoft Rolls Out Patches for 73 Flaws, Including 2 Windows Zero-Days
Microsoft's latest Patch Tuesday tackles 73 vulnerabilities, including actively exploited zero-days.
SecurityWeek
Microsoft Patches Two Zero-Days Exploited for Malware Delivery
Microsoft patches CVE-2024-29988 and CVE-2024-26234, two zero-day vulnerabilities exploited by threat actors to deliver malware.
Security Affairs
Microsoft Patch Tuesday security updates fixed 3 actively exploited flaws
Patch Tuesday security updates for November 2023 fixed three vulnerabilities actively exploited in the wild.
DarkReading
Microsoft Patch Tuesday Tsunami: No Zero-Days, but an Asterisk
Microsoft patched a record number of 147 new CVEs this month, though only three are rated "Critical."
Infosecurity News
Microsoft Fixes Five Zero-Day Vulnerabilities
Patch Tuesday includes fixes for three actively exploited bugs
Latest Hacking News
Microsoft Patch Tuesday For February Addressed Two Zero-Days
Heads up, Microsoft users! It’s now time to update your devices as Microsoft rolled out its monthly Patch Tuesday updates for February 2024. This time, the tech giant addressed over 70 different vulnerabilities, including two
The Hacker News
DarkGate Malware Exploits Recently Patched Microsoft Flaw in Zero-Day Attack
A new DarkGate malware campaign uses a recently patched #MicrosoftWindows flaw (CVE-2024-21412) to deploy malicious software via bogus installers.
Latest Hacking News
Microsoft Patch Tuesday November Fixes 63 Flaws, Including 5 Zero-Days
This week marked the Redmond giant Microsoft’s monthly security updates for its products. With Patch Tuesday November, Microsoft addressed fewer vulnerabilities – over 60 only, including five zero-day flaws. Five Zero-Days Patched With Latest Microsoft Updates Microsoft
Latest Hacking News
Microsoft April Patch Tuesday Fixes Dozens of RCE Flaws
This month’s Patch Tuesday update bundle from Microsoft is a huge one, requiring immediate user attention for device updates. Specifically, with April 2024 Patch Tuesday, Microsoft addressed 150 different security flaws, including over 60 remote
Infosecurity News
Two Zero-Days Fixed in December Patch Tuesday
Close to 50 CVEs addressed this month
The Hacker News
Microsoft Rolls Out Patches for 80 New Security Flaws — Two Under Active Attack
Microsoft's latest Patch Tuesday update for March 2023 is here with fixes for 80 security flaws, including two actively exploited vulnerabilities.
DarkReading
Fresh 'Mispadu Stealer' Variant Emerges
Latest iteration of the malware is aimed at targets in Mexico.
The Record
Organizations patch CISA KEV list bugs 3.5 times faster than others, researchers find
Researchers at Bitsight asked whether organizations remediate software and hardware vulnerabilities faster if they're on the federal government's list. The resulting data added up to a resounding "yes."
SecurityWeek
Windows Zero-Day Exploited in Attacks on Financial Market Traders
CVE-2024-21412, one of the security bypass zero-days fixed by Microsoft with Patch Tuesday updates, exploited by Water Hydra (DarkCasino).
Bleeping Computer
Here are the new features coming to Windows 11
Windows 11 version 22H2 is arriving later this year and it won't be a massive release, but there will be several improvements and bugs fixes. During the Hybrid work event, Microsoft officially teased new features coming to the operating system this year.
Infosecurity News
Microsoft Fixes Two Zero-Days in February Patch Tuesday
Two zero-day bugs actively exploited in the wild now have official Microsoft patches
Bleeping Computer
Microsoft February 2024 Patch Tuesday fixes 2 zero-days, 74 flaws
Today is Microsoft's February 2024 Patch Tuesday, which includes security updates for 74 flaws and two actively exploited zero-days.
Bleeping Computer
Microsoft February 2024 Patch Tuesday fixes 2 zero-days, 73 flaws
Today is Microsoft's February 2024 Patch Tuesday, which includes security updates for 73 flaws and two actively exploited zero-days.
HACKRead
Microsoft Disables App Installer After Feature is Abused for Malware
Microsoft has disabled the App Installer feature to protect users and prevent threat actors from maliciously exploiting its products and features.
DarkReading
'BattleRoyal' Hackers Deliver DarkGate RAT Using Every Trick
The shadowy threat actor uses some nifty tricks to drop popular malware with targets that meet its specifications.
The Hacker News
Critical Exchange Server Flaw (CVE-2024-21410) Under Active Exploitation
A newly discovered privilege escalation vulnerability (CVE-2024-21410) in Microsoft Exchange Server is being actively exploited.
Bleeping Computer
Microsoft fixes two Windows zero-days exploited in malware attacks
Microsoft has fixed two actively exploited zero-day vulnerabilities during the April 2024 Patch Tuesday, although the company failed to initially tag them as such.
Krebs on Security
Microsoft Patch Tuesday, November 2023 Edition
Microsoft today released updates to fix more than five dozen security holes in its Windows operating systems and related software, including three "zero day" vulnerabilities that Microsoft warns are already being exploited in active attacks.
The Hacker News
Alert: Microsoft Releases Patch Updates for 5 New Zero-Day Vulnerabilities
Microsoft has released fixes to address 63 security bugs in its software for the month of November 2023.
Bleeping Computer
Microsoft announces new Windows 11 security, encryption features
Microsoft says that Windows 11 will get more security improvements in upcoming releases, which will add more protection against cybersecurity threats, offer better encryption, and block malicious apps and drivers.
Cyber Security News
Microsoft Disabled App Installer that Abused by Hackers to Install Malware
Threat actors, particularly those with financial motivations, have been observed spreading malware via the ms-appinstaller URI scheme.
SC Magazine
Microsoft fixes a record 147 bugs in April release of Patch Tuesday
This month’s bumper crop of patches includes two Microsoft didn’t initially acknowledge were being exploited in the wild.
SecurityWeek
CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio
CISA has added CVE-2023-38180, a zero-day vulnerability affecting .NET and Visual Studio, to its Known Exploited Vulnerabilities Catalog.
Bleeping Computer
Microsoft November 2023 Patch Tuesday fixes 5 zero-days, 58 flaws
Today is Microsoft's November 2023 Patch Tuesday, which includes security updates for a total of 58 flaws and five zero-day vulnerabilities.
DarkReading
Microsoft Squashes Zero-Day, Actively Exploited Bugs in Dec. Update
Here's what you need to patch now, including six critical updates for Microsoft's final Patch Tuesday of the year.
Security Affairs
December 2022 Patch Tuesday fixed 2 zero-day flaws
Microsoft released December 2022 Patch Tuesday security updates that fix 52 vulnerabilities across its products. Microsoft December 2022 Patch Tuesday security updates addressed 52 vulnerabilities in Microsoft Windows and Windows Components; Azure; Office and Office Components; SysInternals; Microsoft Edge (Chromium-based); SharePoint Server; and the .NET framework. 12 of these vulnerabilities were submitted through the ZDI program. Six vulnerabilities […]
Bleeping Computer
Windows 11 22H2 adds kernel exploit protection to security baseline
Microsoft has released the final version of security configuration baseline settings for Windows 11, version 22H2, downloadable today using the Microsoft Security Compliance Toolkit.
Security Affairs
CISA adds Adobe ColdFusion bug to Known Exploited Vulnerabilities Catalog
US CISA added an actively exploited vulnerability in Adobe ColdFusion to its Known Exploited Vulnerabilities Catalog. U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in Adobe ColdFusion, tracked as CVE-2023-26360 (CVSS score: 8.6), to its Known Exploited Vulnerabilities Catalog. This week Adobe released security updates for ColdFusion versions 2021 and 2018 to resolve the critical flaw […]
Security Affairs
CISA adds Microsoft Exchange and Cisco ASA and FTD bugs to its Known Exploited Vulnerabilities catalog - Security Affairs
U.S. CISA adds Microsoft Exchange and Cisco ASA and FTD bugs to its Known Exploited Vulnerabilities catalog.
Naked Security
Microsoft fixes two 0-days on Patch Tuesday – update now!
An email you haven’t even looked at yet could be used to trick Outlook into helping crooks to logon as you.
Krebs on Security
Fat Patch Tuesday, February 2024 Edition
Microsoft Corp. today pushed software updates to plug more than 70 security holes in its Windows operating systems and related products, including two zero-day vulnerabilities that are already being exploited in active attacks.
Security Affairs
Microsoft Patches Tuesday security updates for April 2024 fixed hundreds of issues - Security Affairs
Microsoft Patches Tuesday security updates for April 2024 addressed three Critical vulnerabilities, none actively exploited in the wild. Microsoft Patches Tuesday security updates for April 2024 addressed 147 vulnerabilities in multiple products. This is the highest number of fixed issues from Microsoft this year and the largest since at least 2017. The issues impact Microsoft […]
Security Affairs
Microsoft Exchange flaw CVE-2024-21410 could impact up to 97,000 servers
Researchers from Shadowserver Foundation identified roughly 28,000 internet-facing Microsoft Exchange servers vulnerable to CVE-2024-21410.
Infosecurity News
Microsoft Patches 150 Flaws Including Two Zero-Days
April’s Patch Tuesday saw fixes for 150 CVEs, including two being actively exploited in the wild
Infosecurity News
Microsoft Upgrades Windows 11 With New Security Features
The list includes application control enhancements and vulnerable drivers protection, among others
Security Affairs
Microsoft Patches Tuesday security updates for April 2024 fixed hundreds of issues
Microsoft Patches Tuesday security updates for April 2024 addressed three Critical vulnerabilities, none actively exploited in the wild.
Bleeping Computer
Microsoft: Windows web content filtering now generally available
Microsoft has announced that web content filtering has reached general availability and is now available for all Windows enterprise customers.
Infosecurity News
Microsoft Patches Two Zero Days This Month
They include one likely exploited by Russian-linked threat actors
Infosecurity News
Microsoft Fixes Six Zero-Days This Patch Tuesday
One of the bugs has been actively exploited in NATO attacks
Latest Hacking News
Microsoft Patch Tuesday For December 2022 Fixes Two Zero-Days
This week, Microsoft rolled out its monthly scheduled updates for Windows systems. The December Patch Tuesday was the last Microsoft update for 2022, fixing two zero-day vulnerabilities and 50 other flaws. Microsoft Addressed Two Zero-Day Vulnerabilities Regarding
Security Affairs
CISA adds Veeam Backup and Replication bugs to Known Exploited Vulnerabilities Catalog
US CISA added two vulnerabilities impacting Veeam Backup & Replication software to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two vulnerabilities impacting Veeam Backup & Replication software, tracked as CVE-2022-26500 and CVE-2022-26501 (CVSS 3.1 Base Score 9.8), to its Known Exploited Vulnerabilities Catalog. According to Binding Operational Directive (BOD) 22-01: Reducing the Significant […]
Latest Hacking News
Microsoft July Patch Tuesday Fixed Six Zero-Day Vulnerabilities
The July 2023 Patch Tuesday update bundle patched at least six different actively-exploited vulnerabilities across different Microsoft products. In all, the update bundle addressed 132 different vulnerabilities. Six Zero-Day Flaws Addressed With July Updates While keeping the
Infosecurity News
BattleRoyal Cluster Signals DarkGate Surge
Proofpoint said the cluster’s use of multiple attack chains highlights a new trend among cybercriminals
DarkReading
Microsoft Zero-Days Allow Defender Bypass, Privilege Escalation
Another two bugs in this month's set of fixes for 63 CVEs were publicly disclosed previously but have not been exploited yet.
SecurityWeek
Microsoft Warns of Critical Bugs Being Exploited in the Wild
Redmond’s security response team flags two vulnerabilities -- CVE-2023-36033 and CVE-2023-36036 -- already being exploited in the wild.
The Record
Microsoft disables app installation protocol abused by hackers
Microsoft said Thursday that it disabled a feature intended to streamline app installation after it discovered financially motivated hacking groups using it to distribute malware.
SecurityWeek
Microsoft Announces Disruption of Russian Espionage APT
Microsoft disrupts Russian APT actor, cutting off access to accounts used for pre-attack reconnaissance, phishing, and email harvesting.
Bleeping Computer
Microsoft March 2023 Patch Tuesday fixes 2 zero-days, 83 flaws
Today is Microsoft's March 2023 Patch Tuesday, and security updates fix two actively exploited zero-day vulnerabilities and a total of 83 flaws.
Bleeping Computer
Microsoft December 2022 Patch Tuesday fixes 2 zero-days, 49 flaws
Today is Microsoft's December 2022 Patch Tuesday, and with it comes fixes for two zero-day vulnerabilities, including an actively exploited bug, and a total of 49 flaws.
Bleeping Computer
How Windows 11's Enhanced Phishing Protection guards your password
One of the easier ways to steal a user's credentials is through a convincing fake login page or application. To help combat the constant risk of password theft, Microsoft added enhanced phishing protection in Windows 11 Version 22H2.
Cyber Security News
Top 10 Vulnerabilities That Were Exploited the Most In 2023
Some of the vulnerabilities were added to the CISA’s Known Exploited Vulnerabilities catalog marking them as extremely important to patch.
Infosecurity News
Microsoft Disrupts Russian Cyber-Espionage Group Seaborgium
APT group focused on classic data theft via email accounts
Bleeping Computer
Microsoft disables MSIX protocol handler abused in malware attacks
Microsoft has again disabled the MSIX ms-appinstaller protocol handler after multiple financially motivated threat groups abused it to infect Windows users with malware.
The Hacker News
Microsoft Fixes 149 Flaws in Huge April Patch Release, Zero-Days Included
Microsoft releases a massive patch for April 2024, fixing a record 149 flaws. Two vulnerabilities are ALREADY under attack.
The Cyber Express
Microsoft Again Halts MS-App Installer Protocol Amid Growing Malware Threats
Microsoft has once again turned off the MSIX MS-app installer. This decision from Microsoft has come lately when multiple threat
Security Affairs
Microsoft fixed two zero-day flaws exploited in malware attacks
Microsoft addressed two zero-day vulnerabilities (CVE-2024-29988 and CVE-2024-26234) actively exploited by threat actors to deliver malware
The Hacker News
Beware: Fake Facebook Job Ads Spreading 'Ov3r_Stealer' to Steal Crypto and Credentials
Cybercriminals use fake Facebook job ads to spread Ov3r_Stealer, a Windows malware. It steals sensitive information.
The Hacker News
December 2022 Patch Tuesday: Get Latest Security Updates from Microsoft and More
Stay protected against new vulnerabilities and zero-day attacks by ensuring your devices are up to date with the latest Patch Tuesday security updates
Loading more articles....