Microsoft enforces defenses preventing NTLM relay attacks
Since making Kerberos the default Windows authentication protocol in 2000, Microsoft has been working on eventually retiring NTLM, its less...
Read more →News Archive
View All →
Chinese EagleMsgSpy Spyware Found Exploiting Mobile Devices Since 2017
Cybersecurity researchers have discovered a novel surveillance program that’s suspected to be used by Chinese police departments as a lawful...
Read more →
CISA Releases Seven New Advisories for Industrial Control Systems
The Cybersecurity and Infrastructure Security Agency (CISA) has released seven new advisories highlighting critical vulnerabilities in widely used Industrial Control...
Read more →
Windows RDP Service Flaw let Hackers Execute Remote Code
A critical security vulnerability (CVE-2024-49115) in Windows Remote Desktop Services (RDS) has been disclosed, potentially allowing hackers to execute arbitrary...
Read more →
Google demos next-gen error correction with Willow quantum tech
Researchers from Google have demonstrated a new generation of quantum computer, called Willow, which is able to run its random...
Read more →
TCC iOS Subsystem Vulnerability Exposes iCloud Data To Attackers
A significant security flaw in Apple’s iOS operating system has been uncovered, allowing malicious applications to access sensitive user data...
Read more →
BadRAM: $10 hack unlocks AMD encrypted memory
Cybersecurity researchers have identified a vulnerability (CVE-2024-21944, aka BadRAM) affecting ADM processors that can be triggered by rogue memory modules...
Read more →
Chinese national charged for hacking thousands of Sophos firewalls
Chinese national charged for hacking thousands of Sophos firewalls Pierluigi Paganini December 11, 2024 The U.S. has charged a Chinese...
Read more →
Chinese Hacker Charged for Hacking 81,000+ Firewalls Worldwide
The cybersecurity firm Sichuan Silence and one of its employees, Guan Tianfeng, have been sanctioned by the Department of the...
Read more →
Ivanti CSA Vulnerabilities Let Attackers Gain Admin Access
Ivanti has issued critical software updates to address several severe vulnerabilities in its Cloud Services Application (CSA). These vulnerabilities tracked...
Read more →
New DCOM Attack Exploits Windows Installer for Backdoor Access
SUMMARY The new DCOM attack leverages Windows Installer service for stealthy backdoor deployment. Attack exploits the IMsiServer interface for remote...
Read more →
Microsoft Office & Excel Vulnerabilities Expose Systems To RCE & Privilege Escalation
Microsoft disclosed two significant vulnerabilities affecting its Office and Excel products as part of its December Patch Tuesday updates. These...
Read more →