Tag: security
Microsoft patches Windows security flaw exploited by North Korean hackers — but is it too late?
As part of its latest Patch Tuesday cumulative update, Microsoft fixed a privilege escalation bug in the Windows Ancillary Function Driver (AFD.sys) for WinSock. This bug is tracked as CVE-2024-38193, and carries a severity score of 7.8. Abusing this flaw apparently grants attackers admin privileges on the vulnerable endpoint, with…
Read More
This expert thinks he has found some major security flaws with the MacOS app store
Mac App Store users are at risk of fraud, as scammers find a way to trick the platform into accepting fake apps, an expert has warned. The fake apps, pretending to replace some of the world’s most popular productivity solutions, are offered for sale on the repository, according to a…
Read More
Azure and Google domains hacked to spread disinformation
Cybercriminals have found a new and creative way to push unwanted advertising, malware, and spam, onto netizens, employing Google, Azure, OVH, and other similar services, along with abusing legitimate features designed to improve the user experience. Researchers from BleepingComputer reported the campaign begins with countless websites hosted on cloud services…
Read More
This critical SolarWinds bug is already being exploited, so patch now
A critical vulnerability plaguing a SolarWinds product is being actively exploited to remotely run malicious code on flawed servers. Since the patch is available, users are advised to apply it immediately and thus secure their endpoints. It was recently reported SolarWinds’ Web Help Desk has a Java deserialization security vulnerability,…
Read More
A bank wire transfer scam cost this company millions — here’s how you can stay safe
Orion S.A., a global supplier of carbon black (a solid form of carbon), has revealed it fell victim to a sophisticated scam and ended up transferring $60 million to accounts belonging to the scammers. The company confirmed the fiasco in a 8-K form filed with the US Securities and Exchange…
Read More
You really need to stop using work laptops for personal use — here’s why
New research has revealed an overwhelming majority (90%) of workers use their company-provided laptops for personal activities, potentially posing a serious cybersecurity risk. The study by ESET highlighted a substantial portion of employees also engage in risky activities using their business hardware, including viewing adult content, gambling, accessing the dark…
Read More