Security News

The UN did not share that discovery with the authorities, the public, or even the potentially affected staff, and we now know about it only because TNH reporters got their hands on a confidential report by the UN. How was the UN hacked? According to the report, the attack started in July 2019, when the attackers managed to compromise a server located at the UN Office in Vienna through CVE-2019-0604, a security hole in Microsoft SharePoint patched by Microsoft in February 2019 and subsequently widely exploited by attackers to hit a variety of targets worldwide.

The United Nations' European headquarters in Geneva and Vienna were hacked last summer, putting thousands of staff records at miscreants' fingertips. Despite the size and extent of the hack, the UN decided to keep it secret.

Including: Nasty Mac malware and gas-pump infections Roundup Here's a catch-up of security news beyond everything else we've covered.…

An attacker could exploit CVE-2019-1491 to obtain sensitive information that could be used to mount further attacks.

Not all phishes contain easily spotted errors or obviously dodgy web links - here's how to stay safe...

Here’s an overview of some of last week’s most interesting news and articles: High-risk vulnerability in Cisco’s secure boot process impacts millions of devices Red Balloon Security has discovered...

A critical vulnerability in Microsoft’s SharePoint collaboration platform has been exploited in the wild to deliver malware. read more

Using a bug patched in March, the attacks are starting to ramp up worldwide.

Researchers say the "PhishPoint" tactic has already impacted 10 percent of Office 365 users globally.

Fake emails targeting Office 365 users via malicious links inserted into SharePoint documents are the latest trick phishers employ to bypass the platform’s built-in security, Avanan researchers...