Security News

Can't spell SupportAssist without 'ass' and 'u' – other makers may be hit, too Dell's troubleshooting software SupportAssist, bundled with the US tech titan's home and business computers, has a...

Botnets in 2018 continued to use DDoS as their primary weapon to attack high-speed networks, according to NSFOCUS. Continuous monitoring and research of botnets discovered significant changes...

Multiple cross-site scripting (XSS) bugs and an XML external entity (XXE) problem opens the door to takeover of admin desktops.

The Cybersecurity and Infrastructure Security Agency (CISA) of the U.S. Department of Homeland Security (DHS) on Monday issued an alert for the Windows vulnerability tracked as BlueKeep and...

Flaw Could Cause Denial-of-Service Event in Windows Fleet, Researcher ClaimsA Google security researcher has disclosed what he calls an unpatched bug in the main cryptographic library used in...

The Preempt research team found two critical Microsoft vulnerabilities that consist of three logical flaws in NTLM, the company’s proprietary authentication protocol. These vulnerabilities allow...

The two CVEs allow bypasses to get around NTLM relay attack mitigations.

Microsoft wants to make its Windows platform passwordless and the latest Windows 10 release marks one step closer to that goal.  read more

SandboxEscaper is back, with a second bypass for the recent CVE-2019-0841 Windows patch.

An anonymous security researcher going by the name of SandboxEscaper today publicly shared a second zero-day exploit that can be used to bypass a recently patched elevation of privilege...