Security News > 2022 > November > Week in review: Microsoft fixes many zero-days, malicious droppers on Google Play, IRISSCON 2022

Photos: IRISSCON 2022IRISSCON, the annual cyber crime-themed conference organized by the Irish Reporting and Information Security Service, was held in Dublin, Ireland on Thursday, November 10, 2022.
Security "Sampling" puts US federal agencies at riskTitania launched an independent research report that uncovers the impact of exploitable misconfigurations on the security of networks in the US federal government.
Active security budget evaluation plugs holes in your security stackIn this Help Net Security video, Pat McGarry, CTO at ThreatBlockr, discusses how enterprise defenders need a way to block modern threats that get through their security stack.
What is software threat modeling and how to use it effectivelyIn this Help Net Security video, Kevin Delaney, Director, Solutions Engineering at Security Compass, explains what threat modeling is, and why it's important for software development.
Remote work pushes video conferencing security to the foreIn this Help Net Security video, George Waller, EVP of Zerify, talks about the rise of remote work and the importance of video conferencing security for organizations of all sizes.
2022 Cloud Data Security ReportFlow Security's 2022 Cloud Data Security Report dives into how CISOs today adapt to the increasing challenges in data security and the concerns they prioritize solving.
News URL
Related news
- Google fixes Android zero-day exploited by Serbian authorities (source)
- Microsoft March 2025 Patch Tuesday fixes 7 zero-days, 57 flaws (source)
- URGENT: Microsoft Patches 57 Security Flaws, Including 6 Actively Exploited Zero-Days (source)
- Microsoft patches Windows Kernel zero-day exploited since 2023 (source)
- New North Korean Android spyware slips onto Google Play (source)
- Patch Tuesday: Microsoft Fixes 57 Security Flaws – Including Active Zero-Days (source)
- Malicious Android 'Vapor' apps on Google Play installed 60 million times (source)
- Google fixes Chrome zero-day exploited in espionage campaign (source)
- Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) (source)
- Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks (source)