CISA Issues New Directive for Patching Known Exploited Vulnerabilities
The goal is to reduce civilian federal agency exposure to attacks that threat actors are actively using in campaigns, agency…
Beware: Free Discord Nitro phishing targets Steam gamers
A new Steam phishing promoted via Discord messages promises a free Nitro subscription if a user links their Steam account, which…
Microsoft Expands Security to AWS in Multicloud Push
Microsoft will expand its cloud security tools to AWS within a suite called Defender for Cloud and launch a new…
Free Tool Scans Web Servers for Vulnerability to HTTP Header-Smuggling Attacks
A researcher will release an open source tool at Black Hat Europe next week that roots out server weaknesses to…
Kaspersky’s stolen Amazon SES token used in Office 365 phishing
Kaspersky said today that a legitimate Amazon Simple Email Service (SES) token issued to a third-party contractor was recently used…
Microsoft: Windows KB5006674, KB5006670 updates break printing
Microsoft says Windows customers are experiencing issues with network printing after installing the Windows 11 KB5006674 and Windows 10 KB5006670 updates issued with…
Snake malware biting hard on 50 apps for only $25
Cybercriminals are flooding to use the Snake password-stealing trojan, making it one of the popular malware families used in attacks.…
TrickBot malware dev extradited to U.S. faces 60 years in prison
A Russian national believed to be a member of the TrickBot malware development team has been extradited to the U.S.…
All Windows versions impacted by new LPE zero-day vulnerability
A security researcher has disclosed technical details for a Windows zero-day privilege elevation vulnerability and a public proof-of-concept (PoC) exploit that…
Ranzy Locker ransomware hit tens of US companies in 2021
The FBI published a flash alert to warn of the activity of the Ranzy Locker ransomware that had […] The…