Security News

Filter by:

IceFire Ransomware Exploits IBM Aspera Faspex to Attack Linux-Powered Enterprise Networks

A previously known Windows-based ransomware strain known as IceFire has expanded its focus to target Linux enterprise networks belonging to several media and entertainment sector organizations across the world. The intrusions entail the exploitation of a recently disclosed deserialization vulnerability in IBM Aspera Faspex file-sharing...
The Hacker News 9 Mar 2023 659 Views

Microsoft Excel now blocking untrusted XLL add-ins by default

Microsoft says the Excel spreadsheet software is now blocking untrusted XLL add-ins by default in Microsoft 365 tenants worldwide. [...]
Bleepingcomputer 8 Mar 2023 1414 Views

Android March 2023 update fixes two critical code execution flaws

Google has released March 2023 security updates for Android, fixing a total of 60 flaws, and among them, two critical-severity remote code execution (RCE) vulnerabilities impacting Android Systems running versions 11, 12, and 13. [...]
Bleepingcomputer 7 Mar 2023 1012 Views

Proof-of-Concept released for critical Microsoft Word RCE bug

A proof-of-concept for CVE-2023-21716, a critical vulnerability in Microsoft Word that allows remote code execution, has been published over the weekend.
Bleepingcomputer 7 Mar 2023 1229 Views

How to prevent Microsoft OneNote files from infecting Windows with malware

The seemingly innocuous Microsoft OneNote file has become a popular file format used by hackers to spread malware and breach corporate networks. Here's how to block malicious OneNote phishing attachments from infecting Windows. [...]
Bleepingcomputer 6 Mar 2023 1270 Views

Microsoft is testing a modern Windows 11 volume mixer

Microsoft is testing a new and modern-looking Windows 11 volume mixer accessible via the taskbar Quick Settings panel that helps adjust the volume on a per-app basis and switch between audio devices. [...]
Bleepingcomputer 6 Mar 2023 1470 Views

FTC to ban BetterHelp from sharing mental health data with advertisers

The Federal Trade Commission (FTC) has proposed to ban the online counseling service BetterHelp from sharing its customers' sensitive mental health data with advertising networks and marketers. [...]
Bleepingcomputer 5 Mar 2023 1062 Views

BlackLotus bootkit bypasses UEFI Secure Boot on patched Windows 11

The developers of the BlackLotus UEFI bootkit have improved the malware with Secure Boot bypass capabilities that allow it to infected even fully patched Windows 11 systems.
Bleepingcomputer 3 Mar 2023 1177 Views

Microsoft releases Windows security updates for Intel CPU flaws

Microsoft has released out-of-band security updates for 'Memory Mapped I/O Stale Data (MMIO)' information disclosure vulnerabilities in Intel CPUs. [...]
Bleepingcomputer 3 Mar 2023 1334 Views

Cisco patches critical Web UI RCE flaw in multiple IP phones

Cisco has addressed a critical security vulnerability found in the Web UI of multiple IP Phone models that unauthenticated and remote attackers can exploit in remote code execution (RCE) attacks. [...]
Bleepingcomputer 2 Mar 2023 1294 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY