Security News > 2020 > January > It's Friday, the weekend has landed... and Microsoft warns of an Internet Explorer zero day exploited in the wild
Microsoft let slip on Friday an advisory detailing an under-attack zero-day vulnerability for Internet Explorer.
In brief... A poorly configured Elasticsearch database left an app's baby photos and videos accessible from the public internet.
A report out of Norway claims that dating app Grindr - and a handful of other mobile apps - are illegally exposing user information to third-party advertisers.
The report claims that a violation of GDPR has occurred in the way the apps collect user habits and then sell them to advertisers who use the information to create detailed profiles on users.
The Hill reports that an internal directive at the FBI instructs agents to make sure state governments get word any time a network intrusion is reported.
News URL
https://go.theregister.co.uk/feed/www.theregister.co.uk/2020/01/18/roundup_january_17/
Related news
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 91 flaws (source)
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 89 flaws (source)
- Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039) (source)
- Microsoft patches Windows zero-day exploited in attacks on Ukraine (source)
- Microsoft launches Zero Day Quest hacking event with $4 million in rewards (source)
- Microsoft announces Zero Day Quest hacking event with big rewards (source)
- Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws (source)
- Microsoft fixes exploited zero-day (CVE-2024-49138) (source)