Microsoft Patch Tuesday, July 2024 Edition – Krebs on Security
Microsoft Corp. today issued software updates to plug at least 139 security holes in various flavors of Windows and other Microsoft products. Redmond says attackers…
Month: July 2024
Microsoft fixes two zero-days exploited by attackers (CVE-2024-38080, CVE-2024-38112)
For July 2024 Patch Tuesday, Microsoft has released security updates and patches that fix 142 CVEs, including two exploited zero-days (CVE-2024-38080, CVE-2024-38112) in Windows Hyper-V…
Hyper-V zero-day stands out on a busy Patch Tuesday
Security teams will have a busy few days ahead of them after Microsoft patched close to 140 new common vulnerabilities and exposures (CVEs) in its…
New Blast-RADIUS attack bypasses widely-used RADIUS authentication
Blast-RADIUS, an authentication bypass in the widely used RADIUS/UDP protocol, enables threat actors to breach networks and devices in man-in-the-middle MD5 collision attacks. Many networked…
Tesla Bribe Attempt, Charges Reduced
The bizarre Russian trial of eight members of the REvil ransomware group is perhaps most noteworthy for the insight it offers into the gang that…
Windows 11 KB5040435 update released with 31 fixes, changes
Microsoft is rolling out the KB5040442 cumulative update for Windows 11 23H3, which includes up to thirty-one improvements and changes. The changes include a new feature that adds…
The Shift from VPNs to ZTNA
In recent years, the landscape of remote work and cybersecurity has undergone significant changes, driving organizations to reevaluate their reliance on traditional Virtual Private Networks…
Government left monitoring of Post Office to ‘luck’
The government left it to “luck” to monitor the Post Office management, which meant it missed opportunities to prevent the Horizon scandal and the suffering…
Windows 10 KB5040427 update released with Copilot changes, 12 other fixes
Microsoft has released the KB5040427 cumulative update for Windows 10 21H2 and Windows 10 22H2 with 13 changes, including Microsoft Copilot now behaving like an app,…
Cyber Attack leads to 1.4GB NSA data breach
The National Security Agency (NSA) of the United States, responsible for overseeing national security and defense matters, has recently made headlines due to a reported…
Microsoft and Google’s GHG emissions gains call viability of net-zero targets into question
The financial results of the world’s biggest three hyperscale cloud companies have seen Amazon, Google and Microsoft all credit growing customer demand for artificial intelligence…
Hackers target WordPress calendar plugin used by 150,000 sites
Hackers are trying to exploit a vulnerability in the Modern Events Calendar WordPress plugin that is present on more than 150,000 websites to upload arbitrary files to…