Microsoft Announced a Defender Antivirus for Linux – Android & iOS Version Coming...
Microsoft Announced a Defender Advanced Threat Protection (APT) Antivirus for Linux users, and now it's released for public preview.
Microsoft Defender Antivirus is known for offering Advanced Threat protection for Windows by default to...
Alert!! CISA, DHS Urges Government Agencies to Patch Critical DNS Flaw Within 24 Hours
The U.S Department of Homeland Security's Cybersecurity and Infrastructure Security Agency has recently issued an order to the civil federal government agencies that are using Windows Server. They have been asked to patch a...
Beware of New Monero Mining Campaign that Uses ProxyLogon Exploit to Compromise Exchange Servers
Microsoft already released details about a serious vulnerability affecting their Exchange mail server software, a range of threat actors have been targeting exploitable servers with a variety of malware, from webshells to ransomware.
SophosLabs researchers...
Badloc- Microsoft Warns of Multiple Vulnerabilities that Could Affect a Wide Range of IoT...
Security researchers at Microsoft recently uncovered a series of critical memory allocation vulnerabilities in IoT and OT devices that adversaries could exploit to bypass security controls to execute malicious code or cause a system...
Warning! Attackers Compromise Over 2000 Microsoft Exchange Servers With ProxyShell Flaws
Over the past two days, the hackers have compromised almost 2000 Microsoft Exchange servers and installed backdoors on those hacked 2000 Microsoft Exchange servers through unpatched ProxyShell vulnerabilities.
Cybersecurity experts of Huntress Labs security firm...
Active Directory Attack Kill Chain Checklist & Tools List- 2024
The "Active Directory Kill Chain Attack & Defense" concept is a structured approach to understanding the sequence of events or stages involved in an Active Directory (AD) attack and the corresponding defensive measures to...
Hackers Use Mouse Movement in Microsoft PowerPoint Presentations to Deliver Malware
There is a new code execution technique being used by hackers who are thought to be working for Russia as reported by the security analysts at Cluster25.
An attack of this type makes use of...
2 New MS Exchange Server 0-Day Bugs Are Exploited By Hackers in Wild –...
Cybercriminals have exploited two 0-day Exchange Server vulnerabilities in real-life attacks as a result of unpatched Exchange Server zero-day vulnerabilities that have not been patched, as confirmed by Microsoft.
Back in August 2022, the Vietnamese...
Azure Service Fabric Explorer Flaw Let Attacker Gain Administrator Privileges
Microsoft Azure Service Fabric has been exposed to a spoofing vulnerability that has been unveiled recently in a proof-of-concept exploit.
The flaw has been tracked as CVE-2022-35829 with medium severity by the security researchers at...
Microsoft Azure Services Vulnerability Let Attackers Gain Unauthorized Access
Orca recently conducted an investigation into several Microsoft Azure services and discovered four instances where various services were uncovered to be susceptible to a Server Side Request Forgery (SSRF) attack.
There are two certain weaknesses...
Recent Posts
.webp?w=324&resize=324,235&ssl=1 "CrushFTP HTTPS Port Vulnerability Leads to Unauthorized Access")
CrushFTP HTTPS Port Vulnerability Leads to Unauthorized Access
Two critical vulnerabilities have been identified in widely used software: CrushFTP and Next.js. CrushFTP, a file transfer solution, contains a vulnerability allowing unauthorized access...