Security News > 2020 > January > It's Friday, the weekend has landed... and Microsoft warns of an Internet Explorer zero day exploited in the wild
Microsoft let slip on Friday an advisory detailing an under-attack zero-day vulnerability for Internet Explorer.
In brief... A poorly configured Elasticsearch database left an app's baby photos and videos accessible from the public internet.
A report out of Norway claims that dating app Grindr - and a handful of other mobile apps - are illegally exposing user information to third-party advertisers.
The report claims that a violation of GDPR has occurred in the way the apps collect user habits and then sell them to advertisers who use the information to create detailed profiles on users.
The Hill reports that an internal directive at the FBI instructs agents to make sure state governments get word any time a network intrusion is reported.
News URL
https://go.theregister.co.uk/feed/www.theregister.co.uk/2020/01/18/roundup_january_17/
Related news
- Malicious ads exploited Internet Explorer zero day to drop malware (source)
- Microsoft October 2024 Patch Tuesday fixes 5 zero-days, 118 flaws (source)
- Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572) (source)
- Patch Tuesday: Internet Explorer Vulnerabilities Still Pose a Problem (source)
- Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools (source)
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 91 flaws (source)
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 89 flaws (source)
- Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039) (source)
- Microsoft patches Windows zero-day exploited in attacks on Ukraine (source)