Microsoft Yanks Buggy Windows Server Updates | Threatpost
Microsoft has yanked the Windows Server updates it issued on Patch Tuesday after admins found that the updates had critical bugs that break three things: Read More
Widespread, Easily Exploitable Windows RDP Bug Opens Users to Data Theft | Threatpost
Remote Desktop Protocol (RDP) pipes have a security bug that could allow any standard, unprivileged Joe-Schmoe user to access other connected users’ machines. If exploited, Read More
MuddyWater hacking group linked by US military to Iranian intelligence – CNNPolitics
The US military’s Cyber Command on Wednesday detailed multiple hacking tools that officials say Iran’s Ministry of Intelligence and Security has used against computer networks Read More
FIN7 Mailing Malicious USB Sticks to Drop Ransomware | Threatpost
Ransomware gangs are mailing malicious USB drives, posing as the U.S. Department of Health and Human Services (HHS) and/or Amazon to target the transportation, insurance, Read More
MacOS Bug Could Let Creeps Snoop On You | Threatpost
Microsoft on Monday released details about a bug in macOS that Apple fixed last month – named “powerdir” – that could let attackers hijack apps, Read More
URL Parsing-Library Bugs Allow DoS, RCE, Spoofing & More | Threatpost
Eight different security vulnerabilities arising from inconsistencies among 16 different URL parsing libraries could allow denial-of-service (DoS) conditions, information leaks and remote code execution (RCE) Read More
Cyber-Spike: Orgs Suffer 925 Attacks per Week, an All-Time High | Threatpost
2021 dragged itself to a close under a Log4Shell-induced blitzkrieg. With millions of Log4j-targeted attacks clocking in per hour since the flaw’s discovery last month, Read More
FBI warns cybercriminals have tried to hack US firms by mailing malicious USB drives – CNNPolitics
A prolific Eastern European cybercriminal group has tried to hack US companies in the transportation, defense and insurance sectors by mailing those organizations malicious USB Read More
3.7M FlexBooker Records Dumped on Hacker Forum | Threatpost
A threat group that identifies itself as Uawrongteam is dumping data stolen from FlexBooker – a popular online appointment scheduling tool for booking services ranging Read More
Google Voice Authentication Scam Leaves Victims on the Hook | Threatpost
Fluffy is missing. You post your lost pet’s photo online, hoping that some good Samaritan will find Fluffy, listing your phone number and crossing your Read More