HackDig : Dig high-quality web security articles

Windows 11 now warns when typing your password in Notepad, websites

Windows 11 22H2 was just released, and with it comes a new security feature called Enhanced Phishing Protection that warns users when they enter their Windows password in insecure applications or on websites.Windows login credentials are valuable to threat actors as they allow them to access internal corporate networks for data theft or ransomware attacks.Th
Publish At:2022-09-24 16:43 | Read:35972 | Comments:0 | Tags:Microsoft Security

Microsoft: Windows KB5017383 preview update added to WSUS by mistake

Microsoft says that KB5017383, this month's Windows preview update, has been accidentally listed in Windows Server Update Services (WSUS) and may lead to security update install problems in some managed environments.The issue is that while WSUS allows admins to deploy the latest Microsoft product updates in enterprise environments, non-security preview relea
Publish At:2022-09-23 12:45 | Read:25961 | Comments:0 | Tags:Microsoft

Microsoft shares workarounds for Windows Group Policy issues

Microsoft has acknowledged a known issue where copying files/shortcuts using Group Policy Preferences on Windows client devices might not work as expected after installing recent Windows cumulative updates released during this month's Patch Tuesday.On affected systems, files or shortcuts will not copy to the target drives or end up as zero-byte files when us
Publish At:2022-09-23 08:35 | Read:21936 | Comments:0 | Tags:Microsoft

Microsoft Exchange servers hacked via OAuth apps for phishing

Microsoft says a threat actor gained access to cloud tenants hosting Microsoft Exchange servers in credential stuffing attacks, with the end goal of deploying malicious OAuth applications and sending phishing emails."The investigation revealed that the threat actor launched credential stuffing attacks against high-risk accounts that didn't have multi-factor
Publish At:2022-09-22 16:43 | Read:29748 | Comments:0 | Tags:Security Microsoft hack

Microsoft adds 'systemd' to the Windows Subsystem for Linux

Microsoft and Canonical have teamed up to add systemd support to the Windows Subsystem for Linux, allowing a larger number of compatible apps to be installed.systemd is a Linux software application that acts as the system and service manager for initializing daemons/services during the bootup of the operating system. Systemd also supports tools that all
Publish At:2022-09-22 16:43 | Read:34630 | Comments:0 | Tags:Microsoft Linux

Windows 11 22H2 causing gaming issues for some NVIDIA users

The Windows 11 22H2 feature update released earlier this week is reportedly causing gaming performance issues on systems with NVIDIA GPUs.As detailed in reports shared across several online platforms and on Microsoft's online community, some users experience stuttering and massive lag while playing games due to what looks like significant drops in CPU usage
Publish At:2022-09-22 16:43 | Read:32166 | Comments:0 | Tags:Gaming Microsoft

Does Follina Mean It’s Time to Abandon Microsoft Office?

As a freelance writer, I spend most of my day working in Microsoft Word. Then, I send drafts to clients and companies across the globe. So, news of the newly discovered Microsoft Office vulnerability made me concerned about the possibility of accidentally spreading malware to my clients. I take extra precautions to ensure that I’m not introducing risk
Publish At:2022-09-22 12:08 | Read:32650 | Comments:0 | Tags:Software Vulnerabilities Application Security Malware Cybers

Windows 11 gets better protection against SMB brute-force attacks

Microsoft announced that the Windows 11 SMB server is now better protected against brute-force attacks with the release of the Insider Preview Build 25206 to the Dev Channel.Redmond has enabled the SMB authentication rate limiter by default and tweaking some of its settings to make such attacks less effective, starting with the latest Windows 11 Insider dev
Publish At:2022-09-21 20:41 | Read:41604 | Comments:0 | Tags:Microsoft Security

Tripwire Patch Priority Index for August 2022

Tripwire’s August 2022 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft.First on the patch priority list this month are patches for Microsoft Office, Outlook, and Excel that resolve 4 vulnerabilities, including denial of service, remote code execution, and security feature bypass.Up next are patches that affect compone
Publish At:2022-09-21 07:51 | Read:36657 | Comments:0 | Tags:VERT CVE microsoft PPI vulnerabilities

Microsoft Defender for Endpoint will turn on tamper protection by default

Microsoft says tamper protection will soon be turned on by default for all enterprise customers in Microsoft Defender for Endpoint (MDE) for better defense against ransomware attacks.The company added this feature to its enterprise endpoint security platform in March 2019 to block changes to key security features and prevent attackers or malicious
Publish At:2022-09-21 00:41 | Read:33948 | Comments:0 | Tags:Microsoft Security

Windows 11 22H2 is released, here are the new features

Microsoft has released the next version of Windows 11 called "22H2," otherwise known as the Windows 11 2022 Update, and it is available as an optional update for users running at least Windows 10 2004 or an older version of Windows 11.Windows 11 22H2 is the first feature update for Microsoft's new operating system, coming with numerous features&nbs
Publish At:2022-09-21 00:41 | Read:30948 | Comments:0 | Tags:Microsoft

Windows 11 22H2 adds kernel exploit protection to security baseline

Microsoft has released the final version of security configuration baseline settings for Windows 11, version 22H2, downloadable today using the Microsoft Security Compliance Toolkit."This release includes numerous changes to further assist in the security of enterprise customers," Microsoft security consultant Rick Munck said."Changes have been made for addi
Publish At:2022-09-21 00:41 | Read:23844 | Comments:0 | Tags:Microsoft Security exploit security

Windows 10 KB5017380 preview update released with new FIDO2 features

Microsoft has released the optional KB5017380 Preview cumulative update for Windows 10 20H2, Windows 10 21H1, and Windows 10 21H2.This update includes numerous bug fixes and enhancements, including a new FIDO2 and Windows Hello authentication features.The KB5017380 cumulative update preview is part of Microsoft's September 2022 monthly "C" update, allow
Publish At:2022-09-21 00:41 | Read:23190 | Comments:0 | Tags:Microsoft

Windows 10 KB5017308 causing issues with Group Policy settings

The Windows 10 KB5017308 cumulative update released this Patch Tuesday is reportedly causing Group Policy Object (GPO) issues, according to admin reports.According to reports shared across multiple social networks and on Microsoft's online community, GPO file operations will no longer work as they can no longer create or copy shortcuts correctly after instal
Publish At:2022-09-16 16:43 | Read:74606 | Comments:0 | Tags:Microsoft

Microsoft Edge’s News Feed ads abused for tech support scams

An ongoing malvertising campaign is injecting ads in the Microsoft Edge News Feed to redirect potential victims to websites pushing tech support scams.Microsoft Edge is currently the default web browser on computers running the Windows operating system and it currently has a 4.3% market share worldwide, according to Statcounter's Global Stats.This scam
Publish At:2022-09-15 16:43 | Read:57399 | Comments:0 | Tags:Security Microsoft

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud