Security News

Windows 10 KB5003637 update may block remote access to event logs
2021-06-10 11:57

Microsoft says that apps may encounter issues accessing event logs on remote Windows 10 devices unless KB5003637 or later updates are installed on both systems. "Event logs might not be accessible from remote devices unless both devices have updates released June 8, 2021 or later," Microsoft states on the Windows 10 health dashboard.

Windows 10 KB5003637 update breaks remote event logs if missing
2021-06-10 11:57

Microsoft says that apps may encounter issues accessing event logs on remote Windows 10 devices unless KB5003637 or later updates are installed on both systems. "Event logs might not be accessible from remote devices unless both devices have updates released June 8, 2021 or later," Microsoft states on the Windows 10 health dashboard.

Windows 10 News and Interests enabled for everyone in latest update
2021-06-09 18:39

Microsoft has now rolled out the Windows 10 'News and Interests' news feed to everyone and enabled it by default on the taskbar, causing many people to seek how to disable it. Starting with last month's Windows 10 preview cumulative updates, Microsoft enabled News and Interests for all users running Windows 10 1909 and later.

Not Windows 11? New Windows 10 name scheme hinted in Microsoft docs
2021-06-09 15:33

Microsoft may have mistakenly leaked that the upcoming next generation of Windows 10 will move away from its current naming scheme and switch to a macOS scheme using geographic locations or development names. "Learn about managing applications in Windows 10 and Windows Sun Valley."

Update Your Windows Computers to Patch 6 New In-the-Wild Zero-Day Bugs
2021-06-09 09:52

Microsoft on Tuesday released another round of security updates for Windows operating system and other supported software, squashing 50 vulnerabilities, including six zero-days that are said to be under active attack. The flaws were identified and resolved in Microsoft Windows,.

Microsoft Raises Alarm for New Windows Zero-Day Attacks
2021-06-08 18:27

"These attacks exploited a chain of Google Chrome and Microsoft Windows zero-day exploits. While we were not able to retrieve the exploit used for remote code execution in the Chrome web browser, we were able to find and analyze an elevation of privilege exploit that was used to escape the sandbox and obtain system privileges," Larin explained. According to Kaspersky, the two Windows flaws were chained to an exploit for a different Chrome vulnerability to plant high-end malware on specific targets running Windows.

Windows 10 targeted by PuzzleMaker hackers using Chrome zero-days
2021-06-08 18:20

Kaspersky security researchers discovered a new threat actor dubbed PuzzleMaker, who has used a chain of Google Chrome and Windows 10 zero-day exploits in highly-targeted attacks against multiple companies worldwide. The zero-day exploit chain deployed in the campaign used a remote code execution vulnerability in the Google Chrome V8 JavaScript engine to access the targeted systems.

Windows 10 KB5003637 & KB5003635 cumulative updates released
2021-06-08 17:27

As part of the June 2021 Patch Tuesday, Microsoft has released new cumulative updates for all supported version of Windows, including Windows 10 KB5003637 & KB5003635 for the Windows 10 May 2021 Update and Windows 10 October 2020 Update. The cumulative updates include security fixes for PCs with May 2021 Update, October 2020 Update and May 2020 Update.

Siloscape malware targets Windows containers, breaks through to the underlying Kubernetes cluster
2021-06-08 15:30

A reverse engineer has discovered what is claimed to be "The first known malware targeting Windows containers to compromise cloud environments," a sentence to put any system administrator on edge. Building on work published in December of last year on reverse-engineering Windows containers, security researcher Daniel Prizmant's latest discovery - made during his day job at Palo Alto Networks' Unit 42 security arm - looks to punch holes in Kubernetes clusters, and has apparently succeeded in doing so across at least 23 known targets.

Researchers Discover First Known Malware Targeting Windows Containers
2021-06-07 23:48

Security researchers have discovered the first known malware, dubbed "Siloscope," targeting Windows Server containers to infect Kubernetes clusters in cloud environments. "Siloscape is heavily obfuscated malware targeting Kubernetes clusters through Windows containers," said Unit 42 researcher Daniel Prizmant.