Microsoft enforces defenses preventing NTLM relay attacks
Since making Kerberos the default Windows authentication protocol in 2000, Microsoft has been working on eventually retiring NTLM, its less secure and obsolete counterpart. Until…
Author: Cybernoz
CISA Releases Seven New Advisories for Industrial Control Systems
The Cybersecurity and Infrastructure Security Agency (CISA) has released seven new advisories highlighting critical vulnerabilities in widely used Industrial Control Systems (ICS). These vulnerabilities, if…
Windows RDP Service Flaw let Hackers Execute Remote Code
A critical security vulnerability (CVE-2024-49115) in Windows Remote Desktop Services (RDS) has been disclosed, potentially allowing hackers to execute arbitrary remote code via the network.…
Google demos next-gen error correction with Willow quantum tech
Researchers from Google have demonstrated a new generation of quantum computer, called Willow, which is able to run its random circuit sampling (RCS) benchmark significantly…
TCC iOS Subsystem Vulnerability Exposes iCloud Data To Attackers
A significant security flaw in Apple’s iOS operating system has been uncovered, allowing malicious applications to access sensitive user data stored in iCloud without any…
BadRAM: $10 hack unlocks AMD encrypted memory
Cybersecurity researchers have identified a vulnerability (CVE-2024-21944, aka BadRAM) affecting ADM processors that can be triggered by rogue memory modules to unlock the chips’ encrypted…
Chinese national charged for hacking thousands of Sophos firewalls
Chinese national charged for hacking thousands of Sophos firewalls Pierluigi Paganini December 11, 2024 The U.S. has charged a Chinese national for hacking thousands of…
Chinese Hacker Charged for Hacking 81,000+ Firewalls Worldwide
The cybersecurity firm Sichuan Silence and one of its employees, Guan Tianfeng, have been sanctioned by the Department of the Treasury’s Office of Foreign Assets…
Ivanti CSA Vulnerabilities Let Attackers Gain Admin Access
Ivanti has issued critical software updates to address several severe vulnerabilities in its Cloud Services Application (CSA). These vulnerabilities tracked as CVE-2024-11639, CVE-2024-11772, and CVE-2024-11773,…
New DCOM Attack Exploits Windows Installer for Backdoor Access
SUMMARY The new DCOM attack leverages Windows Installer service for stealthy backdoor deployment. Attack exploits the IMsiServer interface for remote code execution and persistence. Malicious…
Microsoft Office & Excel Vulnerabilities Expose Systems To RCE & Privilege Escalation
Microsoft disclosed two significant vulnerabilities affecting its Office and Excel products as part of its December Patch Tuesday updates. These vulnerabilities tracked as CVE-2024-49059 and…
Windows Remote Desktop Services Vulnerability Let Attackers Execute Remote Code
On December 10, 2024, Microsoft disclosed a critical vulnerability in its Windows Remote Desktop Services, tracked as CVE-2024-49115. This security flaw allows attackers to execute…