Microsoft Outlook vulnerability helps hackers masquerade as your boss
Hackers have begun exploiting Outlook's productivity tools to send spoofed emails to targeted end-users......»»
Third-party risk management is under the spotlight
In the aftermath of the CrowdStrike IT outage, new research has uncovered a critical vulnerability within financial institutions regarding supply chain resilience. The outage has demonstrated the need for greater digital supply chain resilience, part.....»»
Unpatchable 0-day in surveillance cam is being exploited to install Mirai
Vulnerability is easy to exploit and allows attackers to remotely execute commands. Enlarge (credit: Getty Images) Malicious hackers are exploiting a critical vulnerability in a widely used security camera to spread Mira.....»»
What is Microsoft Teams? How to use the collaboration app
If you're looking for a new online collaboration tool, Microsoft Teams is one of many options. Here's why it might be the best meetings tool for your workplace......»»
Pioneer Kitten: Iranian hackers partnering with ransomware affiliates
A group of Iranian hackers – dubbed Pioneer Kitten by cybersecurity researchers – is straddling the line between state-contracted cyber espionage group and initial access provider (and partner in crime) for affiliates of several ransomwar.....»»
A long, weird FOSS circle ends as Microsoft donates Mono to Wine project
Mono had many homes over 23 years, but Wine's repos might be its final stop. Enlarge / Does Mono fit between the Chilean cab sav and Argentinian malbec, or is it more of an orange, maybe? (credit: Getty Images) Microsoft.....»»
Diligent NIS2 Compliance Toolkit helps organizations bolster their cybersecurity resilience
Diligent launched its Network and Information Security Directive (NIS2) Compliance Toolkit, designed to help organizations navigate the complexities of the European Union (EU) NIS2 Directive and bolster their cybersecurity resilience. The toolkit map.....»»
Maintaining company confidentiality simultaneously hurts and helps workers" well-being
A hush has fallen over the workplace. At tech startups and banks, in doctors' offices and law firms, workers are increasingly being asked to keep secrets. These aren't personal confidences but organizational secrets about clients, proprietary technol.....»»
Dragos Platform updates streamline OT threat and vulnerability workflows
Dragos announced the latest release of the Dragos Platform, an OT network visibility and cybersecurity platform. The updates provide industrial and critical infrastructure organizations with even deeper and enriched visibility into all assets in thei.....»»
Polestar names former Opel, VinFast boss Michael Lohscheller as new CEO
Industry veteran Michael Lohscheller joins Polestar as it struggles financially. He replaces Thomas Ingenlath, who has resigned from the Geely-owned company......»»
Critical Fortra FileCatalyst Workflow vulnerability patched (CVE-2024-6633)
Organizations using Fortra’s FileCatalyst Workflow are urged to upgrade their instances, so that attackers can’t access an internal HSQL database by exploiting known static credentials (CVE-2024-6633). “Once logged in to the HSQLDB,.....»»
APT group exploits WPS Office for Windows RCE vulnerability (CVE-2024-7262)
ESET researchers discovered a remote code execution vulnerability in WPS Office for Windows (CVE-2024-7262). APT-C-60, a South Korea-aligned cyberespionage group, was exploiting it to target East Asian countries. When examining the root cause, ESET d.....»»
HYCU for Microsoft Entra ID provides organizations with automated, policy-driven backups
HYCU announced significant updates to its HYCU R-Cloud data protection platform that offers customers additional protection for their Identity and Access Management (IAM) solutions with support for Microsoft Entra ID. With this announcement, customer.....»»
Versa Director zero-day exploited to compromise ISPs, MSPs (CVE-2024-39717)
Advanced, persistent attackers have exploited a zero-day vulnerability (CVE-2024-39717) in Versa Director to compromise US-based managed service providers with a custom-made web shell dubbed VersaMem by the researchers. The malware harvests credentia.....»»
How VPNs protect you from governments, thieves, and your boss
Governments, ISPs, and even your employer can watch every online move you make. Here's how the best VPN apps can keep your online life safe.The best VPN for iPhone apps can protect you from governments, hackers, even your employerMany countries openl.....»»
Hackers infect ISPs with malware that steals customers’ credentials
Zero-day that was exploited since June to infect ISPs finally gets fixed. Enlarge (credit: Getty Images) Malicious hackers likely working on behalf of the Chinese government have been exploiting a high-severity zero-day.....»»
Microsoft OneDrive vs. Dropbox: Which is the better deal?
This comparison guide will tell you if Dropbox and OneDrive is the right cloud storage service option for you......»»
SonicWall patches critical flaw affecting its firewalls (CVE-2024-40766)
SonicWall has patched a critical vulnerability (CVE-2024-40766) in its next-gen firewalls that could allow remote attackers unauthorized access to resources and, in specific conditions, to crash the appliances. About CVE-2024-40766 CVE-2024-40766 is.....»»
I really hope this rumored change to Windows updates is true
Windows 11 users will save valuable time when dealing with updates since Microsoft is going to make it easier to apply those updates in the future......»»
Microsoft backtracks on deprecating the 39-year-old Windows Control Panel
The Settings app has taken over, but Control Panels aren't going anywhere yet. Here's the Keyboard control panel from Windows NT 4.0. [credit:.....»»
Nuclei: Open-source vulnerability scanner
Nuclei is a fast and customizable open-source vulnerability scanner powered by YAML-based templates. With its flexible templating system, Nuclei can be adapted to perform various security checks. It can send requests to multiple targets using customi.....»»