vulnerabilitiesSix Microsoft vulnerabilities being actively exploited
Microsoft’s March Patch Tuesday fixes several vulnerabilities that have already been used in the wild. Details are not clear at the moment, but it’s worth installing the patches ASAP.
microsoft
65 articles
emailHow to stop exploitation of CVE-2024-49040
The patch that fixes CVE-2024-49040 in Microsoft Exchange is temporarily unavailable. We’ve implemented heuristics that detect attempts to exploit it.
windowsHow to guard against Windows downgrade attacks
Windows Downdate is an attack that can roll back updates to your OS to reintroduce vulnerabilities and allow attackers to take full control of your system. How to mitigate the risk?
AIHow to prepare corporate cybersecurity for all-seeing AI assistants
Although Microsoft has radically revised the rollout plan for its controversial Recall feature, cybersecurity teams can’t afford to ignore the issue of “AI onlookers.
Global outage due to Friday’s release of CrowdStrike
The story of how CrowdStrike released an update on a Friday and brought down thousands, tens of thousands, or maybe even hundreds of thousands of computers around the world.
Zero-day vulnerability in Internet Explorer
A zero-day vulnerability actively exploited by attackers has been discovered in Internet Explorer — the browser that Microsoft supposedly laid to rest over a year ago.
microsoftDon’t forget about Recall, because Recall won’t forget about you
The new AI function in Microsoft Windows has already been dubbed a “security nightmare” on the internet. What risks does it carry, and how to stay safe?
The incognito myth: how private browsing really works
How to use private browsing mode, what it doesn’t protect against, and why Google is deleting five billion dollars’ worth of user data.
How hackers can read your chats with ChatGPT or Microsoft Copilot
How hackers exploit chatbot features to restore encrypted chats from OpenAI ChatGPT, Microsoft Copilot, and most other AI chatbots.
Received an email with a QR code? Watch out!
Examples of how QR codes in emails are used for phishing.
Microsoft getting to grips with drivers. Now it’s your turn!
We take a look at drivers: why we need them, the threats they pose, and how to keep your computer secure.
Internet Explorer is finally dead. Or is it?
In its February update, Microsoft buried Internet Explorer once and for all. Or did it? We investigate what really happened.
And now it’s Chrome needs updating!
Why you should update to the latest version of Google Chrome, Microsoft Edge, Opera, Yandex Browser, Vivaldi, Brave and other Chromium-based browsers.
SharePoint as a phishing tool
Cybercriminals are using hijacked SharePoint servers to send dangerous notifications.
Patches for 64 vulnerabilities in Microsoft products released
It’s time to update! Microsoft patches 64 vulnerabilities in a variety of products and components — from Windows and Office to Defender and Azure.
DogWalk and other vulnerabilities
Microsoft has released patches for more than 140 vulnerabilities, some of which need to be closed as soon as possible.
ILOVEYOU: the virus that loved everyone
We recall the story of the ILOVEYOU worm — one of the most infamous viruses from 22 years ago.
A passwordless future?
Let’s see how Google, Microsoft and Apple can work together to do away with passwords.
Actively exploited vulnerability in Windows
Time to update Windows! Microsoft has released patches for several dozen vulnerabilities, one of which cybercriminals are actively exploiting.
A bunch of vulnerabilities in Windows, one already exploited
Microsoft patches 128 vulnerabilities in a list of products, including Windows and its components.
Another year, another Tuesday
Microsoft patches more than a 100 vulnerabilities in Windows 10 and 11, Windows Server 2019 and 2022, Exchange Server, Office, and Edge browser.