Security News > 2020 > January > It's Friday, the weekend has landed... and Microsoft warns of an Internet Explorer zero day exploited in the wild
Microsoft let slip on Friday an advisory detailing an under-attack zero-day vulnerability for Internet Explorer.
In brief... A poorly configured Elasticsearch database left an app's baby photos and videos accessible from the public internet.
A report out of Norway claims that dating app Grindr - and a handful of other mobile apps - are illegally exposing user information to third-party advertisers.
The report claims that a violation of GDPR has occurred in the way the apps collect user habits and then sell them to advertisers who use the information to create detailed profiles on users.
The Hill reports that an internal directive at the FBI instructs agents to make sure state governments get word any time a network intrusion is reported.
News URL
https://go.theregister.co.uk/feed/www.theregister.co.uk/2020/01/18/roundup_january_17/
Related news
- Microsoft discloses Office zero-day, still working on a patch (source)
- Microsoft August 2024 Patch Tuesday fixes 9 zero-days, 6 exploited (source)
- Microsoft fixes 6 zero-days under active attack (source)
- Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-Days (source)
- Microsoft Patched 6 Actively Exploited Zero-Day Flaws (source)
- Microsoft Patches Zero-Day Flaw Exploited by North Korea’s Lazarus Group (source)
- Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws (source)
- Microsoft fixes Windows Smart App Control zero-day exploited since 2018 (source)
- Microsoft fixes 4 exploited zero-days and a code defect that nixed earlier security fixes (source)
- Patch Tuesday for September 2024: Microsoft Catches Four Zero-Day Vulnerabilities (source)