Microsoft releases updates for Windows zero-day: PrintNightmare

The KB5004945 emergency security update from Microsoft addresses the actively exploited PrintNightmare zero-day vulnerability in the Windows Print Spooler service, which affects all versions of Windows.   The patch, however,…

Chinese researchers accidentally revealed a Windows zero-day flaw

  A critical Windows zero-day flaw known as PrintNightmare was accidentally disclosed by security researchers in China.   Sangfor Technologies, based in Shenzhen, mistakenly published technical data including a proof-of-concept…

Russian hackers had access to Denmark’s central bank for months

Russian state hackers infiltrated Denmark central bank (Danmarks Nationalbank) by planting malware that allowed them to access the network without being noticed for several months.   The hacker division of…

This Microsoft Edge bug allows hackers to steal your information

Microsoft released updates for its Edge browser last week that fixed two security bugs, one of which is a security bypass vulnerability that may be used to inject and execute…

Nobelium hackers breached Microsoft support to target its customers

Microsoft has found new attacks carried out by the Russian state-sponsored Nobelium hacking gang, including the exposure of customer subscription information on the PC of a Microsoft support employee.  …

REvil ransomware attacks US nuclear weapons contractor

The REvil ransomware gang, which claims to be auctioning data stolen during the attack, targeted US nuclear weapons contractor Sol Oriens with a cyberattack.   Sol Oriens describes itself as…

SEO poisoning used to backdoor targets with malware

Microsoft is investigating a number of cyberattacks that use SEO poisoning to infect targets with a remote access trojan (RAT) capable of stealing sensitive information and backdooring victims’ systems.  …

Microsoft Office patches 4 critical security flaws

Check Point Research, a cybersecurity company, had advised Microsoft Office customers to update their software as soon as possible following the discovery of four security vulnerabilities that enable attackers to…

Microsoft warns about phishing attack by Nobelium group spoofing USAID

Microsoft has issued a warning that a Russian-backed hacking outfit known as Nobelium is currently executing a phishing attack and has managed to access the US Agency for International Development’s…

Microsoft warns of data stealing malware (StrRAT Fake-Ransomware RAT)

Microsoft has issued an alert about a “massive email campaign” that uses the Java-based STRRAT malware to steal sensitive data from compromised systems while masquerading as a ransomware infection.  …