Tag Microsoft

New ‘Lazy FP State Restore’ Vulnerability Discovered in All Modern Intel CPUs

Title: New Vulnerability Discovered in Intel Processors Poses Major Security Risk A newly identified security vulnerability affecting Intel processors has raised alarms among cybersecurity professionals. This vulnerability, known as Lazy FP State Restore (CVE-2018-3665), impacts the speculative execution technology utilized in Intel Core and Xeon processors, a mechanism previously targeted…

Read MoreNew ‘Lazy FP State Restore’ Vulnerability Discovered in All Modern Intel CPUs

Two Zero-Day Vulnerabilities Discovered Following Upload of ‘Unarmed’ Proof of Concept to VirusTotal

Microsoft Uncovers Critical Zero-Day Vulnerabilities Targeting Adobe and Windows Kernel Recent disclosures from Microsoft security researchers have revealed two significant zero-day vulnerabilities that were identified after a malicious PDF file surfaced on VirusTotal. These vulnerabilities were promptly patched before they could be exploited in real-world scenarios. In late March, ESET…

Read MoreTwo Zero-Day Vulnerabilities Discovered Following Upload of ‘Unarmed’ Proof of Concept to VirusTotal

Global Operation Strikes a One-Two Blow to Disrupt Cybercrime ‘Assembly Line’

Major Disruption of Cybercrime Networks in Operation Endgame In a significant coordinated law enforcement action known as Operation Endgame, a collaboration between Microsoft, Europol, and various cybersecurity firms led to the dismantling of several malicious tools associated with organized crime. This operation leveraged the Racketeer Influenced and Corrupt Organizations (RICO)…

Read MoreGlobal Operation Strikes a One-Two Blow to Disrupt Cybercrime ‘Assembly Line’

Microsoft Issues Patches for 60 Vulnerabilities, Including Two Currently Under Active Exploitation

Microsoft has recently released its Patch Tuesday update for August 2018, effectively addressing a total of 60 vulnerabilities across various platforms. Among these, 19 are marked as critical, raising alarms for IT departments globally. The updates affect key components such as Microsoft Windows, the Edge browser, Internet Explorer, and multiple…

Read MoreMicrosoft Issues Patches for 60 Vulnerabilities, Including Two Currently Under Active Exploitation

White House Significantly Reduces Deadline for Transitioning Away from Quantum-Vulnerable Cryptography

The White House has set a new, accelerated deadline for government agencies and organizations to implement quantum-resistant encryption systems designed to fend off threats posed by quantum computing technologies. This extensive move aims to safeguard valuable information accumulated over decades, encompassing sensitive data from militaries, banks, governments, and private citizens…

Read MoreWhite House Significantly Reduces Deadline for Transitioning Away from Quantum-Vulnerable Cryptography

Hacker Reveals Unpatched Windows Zero-Day Vulnerability (Including Proof of Concept)

Critical Zero-Day Vulnerability Discovered in Windows Operating System A significant security threat has been disclosed, revealing a zero-day vulnerability in Microsoft’s Windows operating system. This previously unknown flaw could enable local users or malicious applications to gain elevated system privileges on an affected machine. Notably, this vulnerability has been confirmed…

Read MoreHacker Reveals Unpatched Windows Zero-Day Vulnerability (Including Proof of Concept)

Caution: Unpatched Safari Vulnerability Allows URL Spoofing by Attackers

Major URL Spoofing Vulnerability Discovered in Microsoft Edge and Apple Safari A significant security vulnerability has emerged that allows attackers to spoof URLs in the Microsoft Edge browser on Windows and Apple Safari on iOS. This flaw underscores escalating concerns over online security, particularly for users of these popular web…

Read MoreCaution: Unpatched Safari Vulnerability Allows URL Spoofing by Attackers

New Cold Boot Attack Bypasses Disk Encryption on Most Modern PCs

New Cold Boot Attack Poses Threat to Sensitive Data on Modern Computers Security researchers have unveiled a sophisticated new variant of the Cold Boot Attack, a technique that allows unauthorized access to sensitive information—such as passwords and encryption keys—stored on many contemporary systems, including those utilizing full disk encryption. Traditionally…

Read MoreNew Cold Boot Attack Bypasses Disk Encryption on Most Modern PCs