Category: Software Security

October 27, 2020

In October 2020, Microsoft patched a set of vulnerabilities that included critical networking bugs CVE-2020-16898 and CVE-2020-16899. Known as “Bad Neighbor” or “Ping of Death Redux,” these flaws lurk in the TCP/IP networking implementation in Windows in how incoming ICMPv6 […]

October 22, 2020

Security researchers have discovered a new remote access trojan (RAT) being advertised on Russian-speaking underground hacking forums. Named T-RAT, the malware is available for only $45, and its primary selling point is the ability to control infected systems via a […]

October 21, 2020

Prior to Microsoft’s Ignite conference I was able to talk with the company’s CISO Bret Arsenault about some key elements that we all should be doing to keep Windows networks secure. He talks about four pillars of security: passwordless identity […]

October 16, 2020

Adobe has released a set of out-of-band security fixes to resolve serious issues in the Magento platform. Published on October 15, the security advisory is outside of the firm’s typical monthly patch cycle and resolves nine vulnerabilities, eight of which […]

October 15, 2020

If there’s going to be a successful cyberattack on the 2020 U.S election, you can be sure Windows will be involved. It’s the world’s biggest exposed attack vector and the weapon of choice of cybercriminals and intelligence agencies the world […]

October 13, 2020

Threat actors are consistently leveraging legitimate services and tools from within Microsoft Office 365 to pilfer sensitive data and launch phishing, ransomware, and other attacks across corporate networks from a persistent position inside the cloud-based suite, new research has found. […]

October 12, 2020

Hackers have gained access to government networks by combining VPN and Windows bugs, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) said in a joint security alert published on Friday. Attacks have targeted federal […]

October 9, 2020

Facebook launched its bug bounty program in 2011. Now, the company is bringing an intriguing update to it with a loyalty program called Hacker Plus, which will reward security researchers to keep finding bugs in the social network’s platform. The […]

October 7, 2020

Running software past its end of life introduces risk to your organization. It means you will no longer receive security updates and patches for newly discovered vulnerabilities. Sometimes the business requires that you continue to use an unsupported product. Adobe […]

October 5, 2020

Microsoft has released on Friday a new tool that will allow system administrators to update the Defender security package inside Windows installation images (WIM or VHD supported). The new tool was created for enterprise environments where workstations and servers are […]