Details

Hacker News

18 April 2023

April 11, 2023  The Hacker News published that a "by-design flaw" uncovered in Microsoft Azure could be exploited by attackers to gain access to storage accounts, move laterally in the environment, and even execute remote code...Read More......................

Details

Hackernews

18 April 2023

April 14, 2023  The Hackernews published that the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has addedtwo vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. "Android Framework contains an unspecified vulnerability that allows for privilege escalation after updating an app to a higher Target SDK with no additional execution privileges needed," CISAsaid in an advisory for CVE-2023-20963...Read More......................

Details

Info Security Magazine

18 April 2023

April 12, 2023  Info Secuirty Magazine published that Emotet malware has continued to climb the rankings of Check Point’s Most Wanted Malware List in March thanks to a new campaign relying on spam emails containing a malicious OneNote file. The threat is now second on the list, one spot up from February’s report. The campaign responsible for its growth in adoption lures victims to open a malicious OneNote file that installs the malware....Read More......................

Details

HackerNews

14 April 2023

April 12, 2023  The Hacker News published that Microsoft has released another set of security updates to fix a total of 97 flaws impacting its software, one of which has been actively exploited in ransomware attacks in the wild.Seven of the 97 bugs are rated Critical and 90 are rated Important in severity. Interestingly, 45 of the shortcomings are remote code execution flaws, followed by 20 elevation of privilege vulnerabilities. The updates also follow fixes for 26 vulnerabilities in its Edge browser that were released over the past month....Read More......................