SecurityWeek
Information Stealer Exploits Windows SmartScreen Bypass
Attackers exploit a recent Windows SmartScreen bypass vulnerability to deploy the Phemedrone information stealer.
SecurityWeek
Attackers exploit a recent Windows SmartScreen bypass vulnerability to deploy the Phemedrone information stealer.
Security Affairs
Threat actors exploit a recent Windows SmartScreen bypass flaw CVE-2023-36025 to deliver the Phemedrone info stealer.
CSO
Phemedrone infostealer campaign has been found to exploit the Windows SmartScreen vulnerability for initial infections.
Cyber Security News
Hackers actively target and exploit Windows Defender SmartScreen to deceive users and deliver malicious content by creating convincing, misleading websites or applications.
Bleeping Computer
A Phemedrone information-stealing malware campaign exploits a Microsoft Defender SmartScreen vulnerability (CVE-2023-36025) to bypass Windows security prompts when opening URL files.
Cyber Security News
Threat actors exploit Microsoft Defender SmartScreen zero-day flaws to circumvent the security mechanisms designed to protect users.
The Hacker News
Cybercriminals are targeting Mexican users with a new variant of the Mispadu banking malware, exploiting a patched Windows SmartScreen bypass flaw
The Hacker News
Cybercriminals exploit a zero-day flaw in Microsoft Defender SmartScreen to target financial traders with sophisticated malware!
Cyber Security News
Phemedrone Stealer, a sophisticated malware that exploits a vulnerability in Microsoft Windows Defender SmartScreen, CVE-2023-36025.
Bleeping Computer
A new wave of attacks by the DarkGate malware operation exploits a now-fixed Windows Defender SmartScreen vulnerability to bypass security checks and automatically install fake software installers.
Bleeping Computer
A new wave of attacks by the DarkGate malware operation exploits a now-fixed Windows Defender SmartScreen vulnerability to bypass security checks and automatically install fake software installers.
Trend Micro
The APT group Water Hydra has been exploiting the zero-day Microsoft Defender SmartScreen vulnerability (CVE-2024-21412) in its campaigns targeting financial market traders. This vulnerability, which has now been patched by Microsoft, was discovered and disclosed by the Trend Micro Zero Day Initiative.
HACKRead
The vulnerability was patched on November 14, 2023, but the Cybersecurity and Infrastructure Security Agency (CISA) added it to the Known Exploited Vulnerabilities (KEV) list due to evidence of in-the-wild exploitation.
Trend Micro
This entry aims to provide additional context to CVE-2024-21412, how it can be used by threat actors, and how Trend protects customers from this specific vulnerability.
DarkReading
Attackers use Google redirects in their phishing attack leveraging a now-patched vulnerability that aims to spread the multifaceted malware.
DarkReading
Threat actors were actively exploiting CVE-2023-36025 before Microsoft patched it in November.
Cyber Security News
Microsoft released multiple security patches as part of their Patch Tuesday in which three zero-day vulnerabilities were also patched.
Cyber Security News
Microsoft releases a few patches in December normally, and this year is no exception. Microsoft Patch for December 2022, a total of 52 vulnerabilities in Microsoft Windows and Windows Components, Azure, Office and Office Components, SysInternals, Microsoft Edge (Chromium-based), SharePoint Server, and the.NET framework was fixed by security patches released on Tuesday.
Trend Micro
In addition to our Water Hydra APT zero day analysis, the Zero Day Initiative (ZDI) observed a DarkGate campaign which we discovered in mid-January 2024 where DarkGate operators exploited CVE-2024-21412.
ZDNet
One moderate vulnerability that's already exploited impacts the Windows SmartScreen Security Feature.
Infosecurity News
CVE-2024-21412 was used to evade Microsoft Defender SmartScreen and implant victims with DarkMe
DarkReading
Threat actors were actively exploiting CVE-2023-36025 in Windows SmartScreen as a zero-day vulnerability before Microsoft patched it in November.
Bleeping Computer
Microsoft has patched another zero-day bug used by attackers to circumvent the Windows SmartScreen cloud-based anti-malware service and deploy Magniber ransomware payloads without raising any red flags.
Bleeping Computer
Microsoft has patched today a Windows Defender SmartScreen zero-day exploited in the wild by a financially motivated threat group to deploy the DarkMe remote access trojan (RAT).
Bleeping Computer
Microsoft has fixed a security vulnerability used by threat actors to circumvent the Windows SmartScreen security feature and deliver payloads in Magniber ransomware attacks.
Trend Micro
This blog delves into the Phemedrone Stealer campaign's exploitation of CVE-2023-36025, the Windows Defender SmartScreen Bypass vulnerability, for its defense evasion and investigates the malware's payload.
The Cyber Express
CISA has added two new actively exploited vulnerabilities to its Known Exploited Vulnerabilities Catalog. These vulnerabilities, identified as CVE-2024-21412 and
SC Magazine
The fixes were among 73 the software giant released in this February's Patch Tuesday.
Security Affairs
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds 2 Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog.
DarkReading
The Water Hydra cyberattacker group is one adversary using the zero-days to get past built-in Windows protections.
The Record
The top cybersecurity agency in the U.S. warned that hackers are exploiting three vulnerabilities disclosed by Microsoft on Tuesday.
The Hacker News
Cybercriminals are weaponizing the CVE-2023-36025 Windows vulnerability to deploy Phemedrone Stealer, an open-source information stealer
Infosecurity News
The malware targets browsers, steals crypto wallet and messaging app data, and collects system information
Security Affairs
Microsoft Patch Tuesday updates for March 2023 addressed 74 vulnerabilities, including a Windows zero-day exploited in ransomware attacks. Microsoft Patch Tuesday security updates for March 2023 addressed 74 new vulnerabilities in Microsoft Windows and Windows Components; Office and Office Components; Edge (Chromium-based); Microsoft Dynamics; Visual Studio; and Azure. Six of the fixed issues are rated […]
Security Affairs
Microsoft Patch Tuesday security updates for February 2024 addressed 71 flaws, two of which are actively exploited in the wild.
HACKRead
Mispadu Stealer targeted Spanish- and Portuguese-speaking victims, but the new variant aims at URLs associated with Mexican citizens.
Bleeping Computer
Microsoft announced that the new Windows 11 build rolling out to Insiders in the Canary channel comes with increased protection against phishing attacks and support for SHA-3 cryptographic hash functions.
The Hacker News
Microsoft's latest Patch Tuesday tackles 73 vulnerabilities, including actively exploited zero-days.
SecurityWeek
Microsoft patches CVE-2024-29988 and CVE-2024-26234, two zero-day vulnerabilities exploited by threat actors to deliver malware.
Security Affairs
Patch Tuesday security updates for November 2023 fixed three vulnerabilities actively exploited in the wild.
DarkReading
Microsoft patched a record number of 147 new CVEs this month, though only three are rated "Critical."
Infosecurity News
Patch Tuesday includes fixes for three actively exploited bugs
Latest Hacking News
Heads up, Microsoft users! It’s now time to update your devices as Microsoft rolled out its monthly Patch Tuesday updates for February 2024. This time, the tech giant addressed over 70 different vulnerabilities, including two
The Hacker News
A new DarkGate malware campaign uses a recently patched #MicrosoftWindows flaw (CVE-2024-21412) to deploy malicious software via bogus installers.
Latest Hacking News
This week marked the Redmond giant Microsoft’s monthly security updates for its products. With Patch Tuesday November, Microsoft addressed fewer vulnerabilities – over 60 only, including five zero-day flaws. Five Zero-Days Patched With Latest Microsoft Updates Microsoft
Latest Hacking News
This month’s Patch Tuesday update bundle from Microsoft is a huge one, requiring immediate user attention for device updates. Specifically, with April 2024 Patch Tuesday, Microsoft addressed 150 different security flaws, including over 60 remote
Infosecurity News
Close to 50 CVEs addressed this month
The Hacker News
Microsoft's latest Patch Tuesday update for March 2023 is here with fixes for 80 security flaws, including two actively exploited vulnerabilities.
DarkReading
Latest iteration of the malware is aimed at targets in Mexico.
The Record
Researchers at Bitsight asked whether organizations remediate software and hardware vulnerabilities faster if they're on the federal government's list. The resulting data added up to a resounding "yes."
SecurityWeek
CVE-2024-21412, one of the security bypass zero-days fixed by Microsoft with Patch Tuesday updates, exploited by Water Hydra (DarkCasino).
Bleeping Computer
Windows 11 version 22H2 is arriving later this year and it won't be a massive release, but there will be several improvements and bugs fixes. During the Hybrid work event, Microsoft officially teased new features coming to the operating system this year.
Infosecurity News
Two zero-day bugs actively exploited in the wild now have official Microsoft patches
Bleeping Computer
Today is Microsoft's February 2024 Patch Tuesday, which includes security updates for 74 flaws and two actively exploited zero-days.
Bleeping Computer
Today is Microsoft's February 2024 Patch Tuesday, which includes security updates for 73 flaws and two actively exploited zero-days.
HACKRead
Microsoft has disabled the App Installer feature to protect users and prevent threat actors from maliciously exploiting its products and features.
DarkReading
The shadowy threat actor uses some nifty tricks to drop popular malware with targets that meet its specifications.
The Hacker News
A newly discovered privilege escalation vulnerability (CVE-2024-21410) in Microsoft Exchange Server is being actively exploited.
Bleeping Computer
Microsoft has fixed two actively exploited zero-day vulnerabilities during the April 2024 Patch Tuesday, although the company failed to initially tag them as such.
Krebs on Security
Microsoft today released updates to fix more than five dozen security holes in its Windows operating systems and related software, including three "zero day" vulnerabilities that Microsoft warns are already being exploited in active attacks.
The Hacker News
Microsoft has released fixes to address 63 security bugs in its software for the month of November 2023.
Bleeping Computer
Microsoft says that Windows 11 will get more security improvements in upcoming releases, which will add more protection against cybersecurity threats, offer better encryption, and block malicious apps and drivers.
Cyber Security News
Threat actors, particularly those with financial motivations, have been observed spreading malware via the ms-appinstaller URI scheme.
SC Magazine
This month’s bumper crop of patches includes two Microsoft didn’t initially acknowledge were being exploited in the wild.
SecurityWeek
CISA has added CVE-2023-38180, a zero-day vulnerability affecting .NET and Visual Studio, to its Known Exploited Vulnerabilities Catalog.
Bleeping Computer
Today is Microsoft's November 2023 Patch Tuesday, which includes security updates for a total of 58 flaws and five zero-day vulnerabilities.
DarkReading
Here's what you need to patch now, including six critical updates for Microsoft's final Patch Tuesday of the year.
Security Affairs
Microsoft released December 2022 Patch Tuesday security updates that fix 52 vulnerabilities across its products. Microsoft December 2022 Patch Tuesday security updates addressed 52 vulnerabilities in Microsoft Windows and Windows Components; Azure; Office and Office Components; SysInternals; Microsoft Edge (Chromium-based); SharePoint Server; and the .NET framework. 12 of these vulnerabilities were submitted through the ZDI program. Six vulnerabilities […]
Bleeping Computer
Microsoft has released the final version of security configuration baseline settings for Windows 11, version 22H2, downloadable today using the Microsoft Security Compliance Toolkit.
Security Affairs
US CISA added an actively exploited vulnerability in Adobe ColdFusion to its Known Exploited Vulnerabilities Catalog. U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in Adobe ColdFusion, tracked as CVE-2023-26360 (CVSS score: 8.6), to its Known Exploited Vulnerabilities Catalog. This week Adobe released security updates for ColdFusion versions 2021 and 2018 to resolve the critical flaw […]
Security Affairs
U.S. CISA adds Microsoft Exchange and Cisco ASA and FTD bugs to its Known Exploited Vulnerabilities catalog.
Naked Security
An email you haven’t even looked at yet could be used to trick Outlook into helping crooks to logon as you.
Krebs on Security
Microsoft Corp. today pushed software updates to plug more than 70 security holes in its Windows operating systems and related products, including two zero-day vulnerabilities that are already being exploited in active attacks.
Security Affairs
Microsoft Patches Tuesday security updates for April 2024 addressed three Critical vulnerabilities, none actively exploited in the wild. Microsoft Patches Tuesday security updates for April 2024 addressed 147 vulnerabilities in multiple products. This is the highest number of fixed issues from Microsoft this year and the largest since at least 2017. The issues impact Microsoft […]
Security Affairs
Researchers from Shadowserver Foundation identified roughly 28,000 internet-facing Microsoft Exchange servers vulnerable to CVE-2024-21410.
Infosecurity News
April’s Patch Tuesday saw fixes for 150 CVEs, including two being actively exploited in the wild
Infosecurity News
The list includes application control enhancements and vulnerable drivers protection, among others
Security Affairs
Microsoft Patches Tuesday security updates for April 2024 addressed three Critical vulnerabilities, none actively exploited in the wild.
Bleeping Computer
Microsoft has announced that web content filtering has reached general availability and is now available for all Windows enterprise customers.
Infosecurity News
They include one likely exploited by Russian-linked threat actors
Infosecurity News
One of the bugs has been actively exploited in NATO attacks
Latest Hacking News
This week, Microsoft rolled out its monthly scheduled updates for Windows systems. The December Patch Tuesday was the last Microsoft update for 2022, fixing two zero-day vulnerabilities and 50 other flaws. Microsoft Addressed Two Zero-Day Vulnerabilities Regarding
Security Affairs
US CISA added two vulnerabilities impacting Veeam Backup & Replication software to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two vulnerabilities impacting Veeam Backup & Replication software, tracked as CVE-2022-26500 and CVE-2022-26501 (CVSS 3.1 Base Score 9.8), to its Known Exploited Vulnerabilities Catalog. According to Binding Operational Directive (BOD) 22-01: Reducing the Significant […]
Latest Hacking News
The July 2023 Patch Tuesday update bundle patched at least six different actively-exploited vulnerabilities across different Microsoft products. In all, the update bundle addressed 132 different vulnerabilities. Six Zero-Day Flaws Addressed With July Updates While keeping the
Infosecurity News
Proofpoint said the cluster’s use of multiple attack chains highlights a new trend among cybercriminals
DarkReading
Another two bugs in this month's set of fixes for 63 CVEs were publicly disclosed previously but have not been exploited yet.
SecurityWeek
Redmond’s security response team flags two vulnerabilities -- CVE-2023-36033 and CVE-2023-36036 -- already being exploited in the wild.
The Record
Microsoft said Thursday that it disabled a feature intended to streamline app installation after it discovered financially motivated hacking groups using it to distribute malware.
SecurityWeek
Microsoft disrupts Russian APT actor, cutting off access to accounts used for pre-attack reconnaissance, phishing, and email harvesting.
Bleeping Computer
Today is Microsoft's March 2023 Patch Tuesday, and security updates fix two actively exploited zero-day vulnerabilities and a total of 83 flaws.
Bleeping Computer
Today is Microsoft's December 2022 Patch Tuesday, and with it comes fixes for two zero-day vulnerabilities, including an actively exploited bug, and a total of 49 flaws.
Bleeping Computer
One of the easier ways to steal a user's credentials is through a convincing fake login page or application. To help combat the constant risk of password theft, Microsoft added enhanced phishing protection in Windows 11 Version 22H2.
Cyber Security News
Some of the vulnerabilities were added to the CISA’s Known Exploited Vulnerabilities catalog marking them as extremely important to patch.
Infosecurity News
APT group focused on classic data theft via email accounts
Bleeping Computer
Microsoft has again disabled the MSIX ms-appinstaller protocol handler after multiple financially motivated threat groups abused it to infect Windows users with malware.
The Hacker News
Microsoft releases a massive patch for April 2024, fixing a record 149 flaws. Two vulnerabilities are ALREADY under attack.
The Cyber Express
Microsoft has once again turned off the MSIX MS-app installer. This decision from Microsoft has come lately when multiple threat
Security Affairs
Microsoft addressed two zero-day vulnerabilities (CVE-2024-29988 and CVE-2024-26234) actively exploited by threat actors to deliver malware
The Hacker News
Cybercriminals use fake Facebook job ads to spread Ov3r_Stealer, a Windows malware. It steals sensitive information.
The Hacker News
Stay protected against new vulnerabilities and zero-day attacks by ensuring your devices are up to date with the latest Patch Tuesday security updates
Loading more articles....