Security News

A previously undocumented Windows-based information stealer called ThirdEye has been discovered in the wild with capabilities to harvest sensitive data from infected hosts. The arrival vector for the malware is presently unknown, although the nature of the lure points to it being used in a phishing campaign.

Microsoft has addressed a known issue causing File Explorer on Windows 11 and Windows Server systems after viewing a file's effective access permissions. The known issue impacts systems running the latest Windows releases, including Windows 11 21H2/22H2 and Windows Server 2022.

Microsoft has released the optional KB5027293 Preview cumulative update for Windows 10 22H2 with three new features and 11 additional fixes or changes. Windows 10 users can also manually download and install the KB5027293 preview update from the Microsoft Update Catalog.

Microsoft has released the June 2023 optional cumulative update for Windows 11, version 22H2, which enables the recently announced new Moment 3 fixes, improvements, and new features. While Moment 3 changes have been disabled by default, even though included with the KB5026446 update, users could still enable them by turning on a toggle in the Windows Update settings.

Microsoft is expanding support for passkeys in Windows 11 to make it more secure to log into websites and apps using biometric authentication. To use passkeys on your Windows device for website sign-ins, you have to go to passkey-enabled websites like bestbuy.com, ebay.com, or google.com, create a passkey by accessing from your account settings, and then sign out of your account and then sign back in using your newly created passkey.

A trojanized installer for the popular Super Mario 3: Mario Forever game for Windows has been infecting unsuspecting players with multiple malware infections. Super Mario 3: Mario Forever is a free-to-play remake of the classic Nintendo game developed by Buziol Games and released for the Windows platform in 2003.

The U.S. National Security Agency on Thursday released guidance to help organizations detect and prevent infections of a Unified Extensible Firmware Interface bootkit called BlackLotus. A UEFI bootkit capable of bypassing Windows Secure Boot protections, samples of the malware have since emerged in the wild.

DuckDuckGo has released its privacy-centric browser for Windows to the general public. "Starting today, our desktop browser for Windows is officially in public beta - no invite codes, no waiting list, just a fast, lightweight browser that makes the Internet less creepy and less cluttered," reads the announcement.

Malwarebytes released a fix for a known issue breaking Google Chrome on its customers' systems after installing the Windows 11 22H2 KB5027231 cumulative update released last week. Malwarebytes has now fixed the conflict with the Chrome web browser on up-to-date Windows 11 systems.

Microsoft announced the public preview launch of Win32 app isolation, a new Windows 11 security feature designed to sandbox 32-bit desktop applications.Recently announced during Microsoft's Build 2023 conference, Win32 app isolation uses AppContainer to boost security by mitigating the potential harm caused by compromised applications and protecting the user's privacy.