Security News

Cybercriminals with suspected ties to Pakistan continue to rely on social engineering as a crucial component of its operations as part of an evolving espionage campaign against Indian targets, according to new research. The attacks have been linked to a group called Transparent Tribe, also known as Operation C-Major, APT36, and Mythic Leopard, which has created fraudulent domains mimicking legitimate Indian military and defense organizations, and other fake domains posing as file-sharing sites to host malicious artifacts.

Microsoft has added HDR support to color managed apps to access your display's whole color gamut in the latest Windows 10 build released for Insiders in the Dev Channel. "HDR mode changes the behavior of some creative and artistic apps that use International Color Consortium display color profiles, such as Adobe Photoshop, Adobe Lightroom Classic, and CorelDraw," Microsoft's Amanda Langowski and Brandon LeBlanc said.

Microsoft is working on resolving a high-pitched noise issue Windows 10 users hear when using some 5.1 audio configurations after applying recently released cumulative updates. "After installing KB5000842 or later updates, 5.1 Dolby Digital audio may play containing a high-pitched noise or squeak in certain apps when using certain audio devices and Windows settings," Microsoft explains on the Windows 10 Health Dashboard.

The Windows 10 KB5003173 cumulative update may fail to install with an error 0x800f0922 if Microsoft Edge has been previously uninstalled. After Microsoft released the Windows 10 KB5003173 cumulative update this week as part of the May 2021 Patch Tuesday, some users found they could not install the update.

Threat actors are abusing the Microsoft Build Engine to deploy remote access tools and information-stealing malware filelessly as part of an ongoing campaign. This development tool can build apps on any Windows system if provided with an XML schema project file telling it how to automate the build process.

Citrix this week announced that it has patched a local privilege escalation vulnerability in the Citrix Workspace app for Windows. All supported versions of Citrix Workspace app for Windows are affected by the security hole.

Multiple editions of Windows 10 versions 1803, 1809, and 1909 have reached their End of Service on this month's Patch Tuesday, as Microsoft reminded customers yesterday. While usually, Redmond advises users of end of service products to upgrade as soon as possible to the latest available versions to keep their systems secure, the company also automatically rolls out feature updates to some out-of-date devices reaching EoS. "Windows Update will automatically initiate a feature update for Windows 10 consumer devices and non-managed business devices that are at, or within several months of reaching end of servicing," Microsoft said.

Multiple editions of Windows 10 versions 1803, 1809, and 1909 have reached their End of Service on this month's Patch Tuesday, as Microsoft reminded customers yesterday. While usually, Redmond advises users of end of service products to upgrade as soon as possible to the latest available versions to keep their systems secure, the company also automatically rolls out feature updates to some out-of-date devices reaching EoS. "Windows Update will automatically initiate a feature update for Windows 10 consumer devices and non-managed business devices that are at, or within several months of reaching end of servicing," Microsoft said.

Microsoft has resolved a known issue preventing managed devices from receiving the May 2021 Patch Tuesday Windows security updates. "When checking for updates within Windows Server Update Services or Microsoft Endpoint Configuration Manager and managed devices that connect to these servers," this month's security updates "Might not be available or offered," as Microsoft explained on the Windows Health Dashboard.

Microsoft has launched a new open-source project that aims to add to Windows the benefits of eBPF, a technology first implemented in Linux that allows attaching programs in both kernel and user applications. Microsoft's effort builds on the work of the eBPF community by adding a compatibility layer that turns existing eBPF open-source projects into submodules that can work on top of Windows 10 and Windows Server 2016 and later.