-
Undetectable PowerShell backdoor discovered hiding as Windows updateNews SafeBreach researchers identified the backdoor, which they say went undetected on all major antivirus programs
News -
Office 365's encryption feature can be easily hacked, warns WithSecureNews Researchers advise enterprises to move away from Office 365 Message Encryption, claiming its messages can be decrypted without a key
News -
Fortinet reiterates call to mitigate against active zero-day, as customers delay fixesNews A large number of customers have yet to apply mitigations necessary to avoid the critical vulnerability
News -
Microsoft still searching for zero-day fixes following Patch TuesdayNews ProxyNotShell remains unaddressed even as Microsoft fixes several critical flaws in its monthly package of security patches
News -
Boeing 737 MAX: You can no longer escape liability due to poor codeAnalysis Known vulnerabilities in Boeing’s flight software led to two fatal crashes, as well as a landmark decision with major ramifications for software development
Analysis -
Microsoft's third mitigation update for Exchange Server zero-day exploit bypassed within hoursNews The string of problematic temporary fixes for ‘ProxyNotShell’ grows longer after a 'confusing' and 'atypical' week-long vulnerability disclosure process
News -
CISA issues fresh orders to polish security vulnerability detection in federal agenciesNews The move marks the latest step in the cyber security authority's ongoing ambition to minimise the government's exposure to attacks
News -
US military contractor hacked through Microsoft Exchange vulnerabilities, custom exfiltration toolsNews In a joint advisory, US security groups have warned the prolonged campaign showed new strategies in play, with the vector still unknown
News -
GitHub alerts users to active phishing campaignNews The attack revolves around counterfeit CircleCI notifications urging users to accept updated terms of use and privacy policy
News -
1.1 million Tesla cars recalled over software glitchNews The mass recall is prompted by a flaw in the vehicles' automatic window reversal system
News -
Mozilla patches high-severity security flaws in new ‘speedy’ Firefox releaseNews Numerous vulnerabilities across Mozilla's products could potentially lead to code execution and system takeover
News -
15-year-old vulnerability found in Python moduleNews Hundreds of thousands of repositories have been found to be exposed to the vulnerability
News
