Security News > 2024 > August > Week in review: MS Office flaw may leak NTLM hashes, malicious Chrome, Edge browser extensions

Unpatched MS Office flaw may leak NTLM hashes to attackersA new MS Office zero-day vulnerability can be exploited by attackers to grab users' NTLM hashes, Microsoft has shared late last week.
Key metrics for monitoring and improving ZTNA implementationsIn this Help Net Security interview, Dean Hamilton, CTO at Wilson Perumal & Company, discusses the complexities of zero trust network access implementation, focusing on balancing security with operational efficiency.
Chrome, Edge users beset by malicious extensions that can't be easily removedA widespread campaign featuring a malicious installer that saddles users with difficult-to-remove malicious Chrome and Edge browser extensions has been spotted by researchers.
Misconfigurations and IAM weaknesses top cloud security concernsTraditional cloud security issues often associated with cloud service providers are continuing to decrease in importance, according to the Top Threats to Cloud Computing 2024 report by the Cloud Security Alliance.
Browser backdoors: Securing the new frontline of shadow ITBrowser extensions are a prime target for cybercriminals.
Steps to improve quality engineering and system robustnessIn this Help Net Security video, Stephen Johnson, CEO of Roq, says it is now imperative for companies and organizations to invest significantly more resources and effort into ensuring future-proof systems underpin everything they do.
News URL
Related news
- Browser-Based Data Leaks: 3 Biggest Data Security Challenges Today (source)
- Microsoft Adds Inline Data Protection to Edge for Business to Block GenAI Data Leaks (source)
- New Windows zero-day leaks NTLM hashes, gets unofficial patch (source)
- Microsoft says Edge browser is now 9% faster after optimizations (source)
- Chrome 136 fixes 20-year browser history privacy risk (source)
- Windows NTLM hash leak flaw exploited in phishing attacks on governments (source)