On Wednesday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) warned of active misuse of flaws in Microsoft Exchange on-premises products by nation-state actors and hackers. As per the agencies: “CISA and FBI assess that adversaries could exploit these vulnerabilities to compromise networks, Continue Reading
Both security scientists and U.S. government establishments are exhorting admins to deal with Microsoft’s serious privilege escalation vulnerability. Proof-of-concept (PoC) exploit code, released for a Windows vulnerability, could let hackers to penetrate enterprises by gaining administrative privileges, giving them access to companies’ Active Directory domain controllers (DCs). Called “Zerologon”, the Continue Reading
One of the flaws that Microsoft dealt with on the patch of July 2020 on Tuesday in .NET Framework, SharePoint, and Visual Studio could result in remote code execution. The bug, which is tracked as CVE-2020-1147 and is of critical nature, takes place when the software doesn’t check the source Continue Reading
By