Skip to content
GeekWire
  • Home
  • News
    • CERT
    • EXPLOITS
    • NCSC
    • NVD
    • SECURELIST
    • US-CERT
  • Security
    • Books
    • Pentest
    • Privacy
  • GHDB
  • CHDB
  • Archive
  • About
    • Privacy Policy
    • Terms of Use
    • External Links
    • Sitemap
GeekWire
  • Home
  • News
    • CERT
    • EXPLOITS
    • NCSC
    • NVD
    • SECURELIST
    • US-CERT
  • Security
    • Books
    • Pentest
    • Privacy
  • GHDB
  • CHDB
  • Archive
  • About
    • Privacy Policy
    • Terms of Use
    • External Links
    • Sitemap

Windows

Experts Detail A Recent Remotely Exploitable Windows Vulnerability

23 January 2021

More details have emerged about a security feature bypass vulnerability in Windows NT LAN Manager (NTLM) that was addressed by Microsoft as …

Tags Experts, OS, Security Pro, Vulnerability, Windows

Windows RDP servers are being abused to amplify DDoS attacks

22 January 2021

Cybercrime gangs are abusing Windows Remote Desktop Protocol (RDP) systems to bounce and amplify junk traffic as part of DDoS attacks, …

Tags DDoS attacks, IT, Microsoft, OS, Windows

Microsoft SolarWinds analysis: Attackers hid inside Windows systems by wearing the skins of legit processes

21 January 2021

The SolarWinds hackers triggered one of their Cobalt Strike implants in the firm’s network through a cunning VBScript that was activated by …

Tags Attackers, IT, OS, SolarWinds, Windows

Microsoft Implements Windows Zerologon Flaw ‘Enforcement Mode’

15 January 2021

Microsoft is taking matters into its own hands when it comes to companies that haven’t yet updated their systems to address the critical …

Tags Flaws, OS, Security Pro, Vulnerability, Windows

Microsoft patches anti-virus bug that allowed boobytrapped files to run malicious code when scanned

13 January 2021

This week, as part of its long-standing monthly “Patch Tuesday” regime, Microsoft released security updates to fix more than 80 flaws …

Tags IT, Malware, Microsoft Defender, OS, Windows

Microsoft Patch Tuesday for January 2021 fixes 83 flaws, including an actively exploited issue

13 January 2021

Microsoft Patch Tuesday security updates for January 2021 address 83 vulnerabilities, including a critical flaw actively exploited in the …

Tags Microsoft, OS, Windows, Windows Defender, Zero Days

This new phishing attack uses an odd lure to deliver Windows trojan malware

6 January 2021

A new phishing campaign is attempting to lure victims into downloading malware which gives cyber criminals full control over infected …

Tags IT, Microsoft, News, OS, Windows

New ElectroRAT employed in a wide-ranging operation targeting cryptocurrency users

5 January 2021

Researchers uncovered a large scale operation targeting cryptocurrency users with a previously undetected multiplatform RAT named …

Tags Cryptocurrency, Cyber Threats, Hacking, Microsoft, Windows

Hackers target cryptocurrency users with new ElectroRAT malware

5 January 2021

Security firm Intezer Labs said it discovered a covert year-long malware operation where cybercriminals created fake cryptocurrency apps in …

Tags Cryptocurrency, Malware, Microsoft, OS, Windows

Golang malware infecting Windows, Linux servers with XMRig miner

1 January 2021

Upon execution, the worm checks if a process on the infected machine is listening on port 52013. The existence of a listener on this port …

Tags Linux, Malware, Microsoft, New, Windows

New Golang-based Crypto worm infects Windows and Linux servers

31 December 2020

Experts from Intezer discovered a new and self-spreading Golang-based malware that targets Windows and Linux servers. Experts from Intezer …

Tags IT, Linux, Microsoft, New, Windows

Signing executables with HSM-backed certificates using multiple Windows instances

29 December 2020

Customers use code signing certificates to digitally sign software, documents, and other certificates. Signing is a cryptographic tool that …

Tags Amazon, AWS, Microsoft, OS, Windows
Post navigation
Older posts
Page1 Page2 … Page85 Next →
Cookie-Free

NVD

CVE-2020-17532 – When handler-router component is enabled in servicecomb-java-chassis, authenticated user m …

25 January 2021

CVE-2021-23901 – An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParse …

25 January 2021

CVE-2020-12511 – Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a Cross-Site …

22 January 2021

CVE-2020-12512 – Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authentica …

22 January 2021

CVE-2020-12513 – Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authentica …

22 January 2021

CVE-2020-12514 – Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointe …

22 January 2021

EXPLOITS

Library System 1.0 – ‘category’ SQL Injection

25 January 2021

CASAP Automated Enrollment System 1.0 – ‘route’ Stored XSS

25 January 2021

CASAP Automated Enrollment System 1.0 – ‘First Name’ Stored XSS

25 January 2021

Collabtive 3.1 – ‘address’ Persistent Cross-Site Scripting

25 January 2021

MyBB Timeline Plugin 1.0 – Cross-Site Scripting / CSRF

25 January 2021

Atlassian Confluence Widget Connector Macro – SSTI

22 January 2021

SECURELIST

Sunburst backdoor – code overlaps with Kazuar

11 January 2021

Digital Footprint Intelligence Report

29 December 2020

How we protect our users against the Sunburst backdoor

23 December 2020

Lazarus covets COVID-19-related intelligence

23 December 2020

Sunburst: connecting the dots in the DNS requests

18 December 2020

The future of cyberconflicts

18 December 2020

Information Cyber Network Enterprise Security News

© 2021 GeekWire | Privacy Policy | Cookie-Free | We are not responsible for the content of external sites.