Microsoft Outlook vulnerability helps hackers masquerade as your boss
Hackers have begun exploiting Outlook's productivity tools to send spoofed emails to targeted end-users......»»
Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572)
For October 2024 Patch Tuesday, Microsoft has released fixes for 117 security vulnerabilities, including two under active exploitation: CVE-2024-43573, a spoofing bug affecting the Windows MSHTML Platform, and CVE-2024-43572, a remote code execution.....»»
Chinese hack of US ISPs shows why Apple is right about backdoors for law enforcement
It was revealed this weekend that Chinese hackers managed to access systems run by three of the largest internet service providers (ISPs) in the US. What’s notable about the attack is that it compromised security backdoors deliberately created t.....»»
Qualcomm zero-day under targeted exploitation (CVE-2024-43047)
An actively exploited zero-day vulnerability (CVE-2024-43047) affecting dozens of Qualcomm’s chipsets has been patched by the American semiconductor giant. About CVE-2024-43047 On Monday, Qualcomm has confirmed patches for 20 vulnerabilities af.....»»
Data Theorem Code Secure helps security and DevOps teams secure their software
Data Theorem launched Code Secure, the latest evolution in application security designed to protect the software supply chain from code to deployment. Code Secure uniquely integrates Static Application Security Testing (SAST), Software Composition An.....»»
Microsoft Word may delete your files — here’s how to avoid it
A new bug in Microsoft Word is randomly deleting user files, but we know how to work around it......»»
To Be a Good Pregnancy Surrogate, It Helps to Be a Dominatrix First
One woman spills the beans about giving birth to rich people's children. “They were offering Scrooge McDuck buckets of money.”.....»»
Reports: China hacked Verizon and AT&T, may have accessed US wiretap systems
Chinese hackers were in networks of major ISPs “for months,” WSJ reports. Chinese government hackers penetrated the networks of several large US-based Internet service provide.....»»
Chinese hackers allegedly hit US wiretap systems to hit broadband networks
China put a backdoor on the US’s backdoor and reportedly used it to spy on American citizens......»»
Week in review: Critical Zimbra RCE vulnerability exploited, Patch Tuesday forecast
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: October 2024 Patch Tuesday forecast: Recall can be recalled October arrived, and Microsoft started the month by announcing the release of Windows 11.....»»
Uninstalled Copilot? Microsoft will let you reprogram your keyboard’s Copilot key
Copilot key becomes a "whatever" key in latest Windows Insider Preview build. Whether you care about Microsoft's Copilot AI assistant or not, many new PCs introduced this year hav.....»»
If you think your robot vacuum is watching you, you might not be wrong
A new report finds a worrisome Ecovacs vulnerability.....»»
Get Microsoft Visual Studio for life for just $35 and get coding
Microsoft Visual Studio 2022 Professional empowers developers to create apps across platforms, collaborate, and boost productivity with advanced tools. Get it for life, on sale for just $35. TL;DR: Until October 27, get Microsoft Visual Studio.....»»
Best practices for implementing threat exposure management, reducing cyber risk exposure
In this Help Net Security interview, Sanaz Yashar, CEO at Zafran, discusses the role of threat exposure management (TEM) in modern cybersecurity strategies. As traditional vulnerability management evolves, TEM addresses the overwhelming risks arising.....»»
October 2024 Patch Tuesday forecast: Recall can be recalled
October arrived, and Microsoft started the month by announcing the release of Windows 11 24H2. The preview versions of this release have been in the news due to many innovations and one controversial feature. Windows 11 24H2 and Microsoft Recall This.....»»
100+ domains seized to stymie Russian Star Blizzard hackers
Microsoft and the US Justice Department have seized over 100 domains used by Star Blizzard, a Russian nation-state threat actor. “Between January 2023 and August 2024, Microsoft observed Star Blizzard target over 30 civil society organizations.....»»
OpenAI secures $6.6 billion in latest funding round
Thanks to $6.6 billion in funding from the likes of Microsoft and Nvidia with a $157 billion valuation, OpenAI is now one of the wealthiest private enterprises on the planet......»»
Darktrace brings real-time cloud detection and response to Microsoft Azure customers
Darktrace announced the expansion of Darktrace / CLOUD to support Microsoft Azure environments. The AI-driven Cloud Detection and Response (CDR) system leverages Microsoft’s virtual network flow logs for agentless deployment, slashing deploymen.....»»
Critical Ivanti Endpoint Manager flaw exploited (CVE-2024-29824)
CVE-2024-29824, an unauthenticated SQL Injection vulnerability in Ivanti Endpoint Manager (EPM) appliances, is being exploited by attackers, the Cybersecurity and Infrastructure Security Agency has confirmed by adding the bug to its Known Exploited V.....»»
Microsoft’s new “Copilot Vision” AI experiment can see what you browse
Microsoft brings two new opt-in trial features to some users of its Copilot AI-assistant. On Monday, Microsoft unveiled updates to its consumer AI assistant Copilot, introducing t.....»»
Windows 11 can now use AI to respond to your text messages
Microsoft's Phone Link app just made answering messages easier with Suggested Replies. Here is everything you need to know about the feature......»»