Security News

Windows Search Bug Worth Watching, and Squashing (Threatpost)
2017-08-14 19:22

Patches are available—and should be applied—that address a critical vulnerability in Windows Search that some are calling the next WannaCry. Others aren't so ready to do that.

Patched Flash Player Sandbox Escape Leaked Windows Credentials (Threatpost)
2017-08-10 19:00

One of yesterday's Flash Player patches was a do-over after the researcher who privately reported the problem earlier this year discovered the original patch incompletely resolved the issue.

Microsoft Patches Critical Windows Search Vulnerability (Threatpost)
2017-08-08 21:21

Microsoft patched 25 critical vulnerabilities, including a remote code execution bug in Windows Search.

Microsoft Patches Windows Search Flaw Exploited in Attacks (Security Week)
2017-08-08 19:08

Microsoft’s Patch Tuesday updates for August 2017 address a total of 48 vulnerabilities in Windows, Internet Explorer, Edge, SQL Server, SharePoint Server, Office and Outlook. read more

Windows 10 Can Detect PowerShell Attacks: Microsoft (Security Week)
2017-08-04 16:19

Windows 10 can detect suspicious PowerShell activities, code injection, and malicious documents, including attacks where a process connects to a web server and starts dropping and launching an...

Exploited Windows Flaws Affect Siemens Medical Imaging Products (Security Week)
2017-08-04 15:23

Siemens has informed customers that some of its molecular imaging products are exposed to remote attacks due to vulnerabilities affecting Windows and other third-party components. read more

NSA Collects MS Windows Error Information (Schneier on Security)
2017-08-01 11:00

Back in 2013, Der Spiegel reported that the NSA intercepts and collects Windows bug reports: One example of the sheer creativity with which the TAO spies approach their work can be seen in a...

Zero-Day Vulnerabilities against Windows in the NSA Tools Released by the Shadow Brokers (Schneier on Security)
2017-07-28 11:16

In April, the Shadow Brokers -- presumably Russia -- released a batch of Windows exploits from what is presumably the NSA. Included in that release were eight different Windows vulnerabilities....

Microsoft offers rewards for Windows bugs (Help Net Security)
2017-07-27 13:20

Microsoft is asking researchers to look for bugs inside the latest Windows 10 version (Insider Preview slow ring). Remote code execution bugs can net finders up to $15,000, elevation of privilege...

Microsoft Launches Windows Bug Bounty Program (Security Week)
2017-07-27 06:38

Microsoft announced on Wednesday the launch of a Windows bug bounty program with payouts ranging between $500 and $250,000. read more