Security News

Millions of Windows Dell PCs need patching: Give-me-admin security gremlin found lurking in bundled support tool
2019-06-20 22:21

Can't spell SupportAssist without 'ass' and 'u' – other makers may be hit, too Dell's troubleshooting software SupportAssist, bundled with the US tech titan's home and business computers, has a...

Botnets shift from Windows towards Linux and IoT platforms
2019-06-20 05:00

Botnets in 2018 continued to use DDoS as their primary weapon to attack high-speed networks, according to NSFOCUS. Continuous monitoring and research of botnets discovered significant changes...

Microsoft Management Console Bugs Allow Windows Takeover
2019-06-18 15:01

Multiple cross-site scripting (XSS) bugs and an XML external entity (XXE) problem opens the door to takeover of admin desktops.

DHS Issues Alert for Windows 'BlueKeep' Vulnerability
2019-06-17 18:07

The Cybersecurity and Infrastructure Security Agency (CISA) of the U.S. Department of Homeland Security (DHS) on Monday issued an alert for the Windows vulnerability tracked as BlueKeep and...

Google Researcher Details Windows Cryptographic Library Bug
2019-06-12 19:18

Flaw Could Cause Denial-of-Service Event in Windows Fleet, Researcher ClaimsA Google security researcher has disclosed what he calls an unpatched bug in the main cryptographic library used in...

Critical Microsoft NTLM vulnerabilities allow remote code execution on any Windows machine
2019-06-11 16:57

The Preempt research team found two critical Microsoft vulnerabilities that consist of three logical flaws in NTLM, the company’s proprietary authentication protocol. These vulnerabilities allow...

Near-Ubiquitous Critical Microsoft RCE Bugs Affect All Versions of Windows
2019-06-11 16:00

The two CVEs allow bypasses to get around NTLM relay attack mitigations.

Microsoft Pushing for a Passwordless Windows 10
2019-06-11 15:12

Microsoft wants to make its Windows platform passwordless and the latest Windows 10 release marks one step closer to that goal.  read more

SandboxEscaper Debuts ByeBear Windows Patch Bypass
2019-06-07 15:27

SandboxEscaper is back, with a second bypass for the recent CVE-2019-0841 Windows patch.

Hacker Discloses Second Zero-Day to Bypass Patch for Windows EoP Flaw
2019-06-07 10:48

An anonymous security researcher going by the name of SandboxEscaper today publicly shared a second zero-day exploit that can be used to bypass a recently patched elevation of privilege...