Microsoft

bitdefender.com

Microsoft worm warning: Windows users urged to patch now

Microsoft is urging computer users to patch their systems now against a critical vulnerability that could be exploited by a fast-moving worm.

Read more in my article on the Hot for Security blog.


0 sec read

A third-party patch for Microsoft’s Internet Explorer zero-day vulnerability

Don’t want to wait for Microsoft to fix the problem in how Internet Explorer handles .MHT files? Other security researchers come to the rescue.


36 sec read

bitdefender.com

It doesn’t matter if you don’t use Internet Explorer, you could still be at risk from this IE zero-day vulnerability

Even if you don’t use Internet Explorer any more, it may still be posing a potential risk by being installed on your Windows PCs.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

Hackers could read users’ Outlook, Hotmail, and MSN email via compromised Microsoft support account

Microsoft says that it had identified that one of its support agents had had their username and password stolen, which allowed hackers to access information stored within users’ email accounts.

Read more in my article on the Hot for Security blog.


0 sec read

Multi-factor failure locks out Microsoft Office 365 and Azure users

Users of Microsoft Azure and Office 365 are struggling to access their accounts today, due to a multi-factor authentication malfunction.


45 sec read

Videos and MS Office documents – ingredients for a malware attack

Security researchers say that they have uncovered a new way to serve up malware to computer users, by exploiting the way in which videos are embedded inside Microsoft Office documents.

And Microsoft has no plans to fix it.


1 min read

bitdefender.com

Search for Chrome on Bing, and you might get a nasty surprise

It’s 2018, and you can still end up with your computer compromised by searching for Google Chrome in Microsoft Bing.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

Microsoft offers up to $100,000 to identity bug finders

Want to earn $100,000? You could win as much as that if you manage to uncover a serious vulnerability in Microsoft’s various identity services.

Read more in my article on the Hot for Security blog.


0 sec read

tripwire.com

Zero-day flaw exploited in targeted attacks is fixed by Microsoft

This month’s Patch Tuesday bundle of updates from Microsoft included a fix for a critical vulnerability that has been actively exploited by at least one hacking gang in targeted attacks.

Read more in my article on the Tripwire State of Security blog.


0 sec read

Cryptomining with JavaScript in an Excel spreadsheet

It didn’t take long at all for a security researcher to demonstrate how easy it was to turn an Excel spreadsheet into a cryptomining machine.


52 sec read

Bad guys have something new to play with! Microsoft Excel adds support for JavaScript

Microsoft has launched some new features in its Excel spreadsheet software that will boost its power. But will that only be for the benefit of users?


33 sec read

bitdefender.com

Reports of tech support scams rocket, as fraudsters make a pretty penny

A genuine Microsoft error message or security warning will never include a phone number. So don’t call it!

Read more in my article on the Hot for Security blog.


0 sec read

tripwire.com

Poisoned BitTorrent client kickstarted malware outbreak that tried to infect 400,000 PCs

Microsoft has detailed how it intercepted a massive malware distribution campaign on March 6th which attempted to infect over 400,000 Windows PCs with cryptomining software in a single 12 hour period.

Read more in my article on the Tripwire State of Security blog.


0 sec read

bitdefender.com

Windows 10 flaw allowed attackers to open malicious websites… even if your PC was locked

You may think your Windows 10 computer is locked, but is it really?

Israeli researchers have discovered a way of just using voice commands to make locked Windows 10 computers visit a website under the control of malicious hackers… and potentially install malware.

Read more in my article on the Hot for Security blog.


0 sec read

welivesecurity.com

Patch now! Microsoft fixes over 50 serious security flaws

This week saw the second Tuesday of the month, and everyone who is responsible for protecting Windows computers knows what that means: another bundle of security patches have been released by Microsoft.

Read more in my article on the We Live Security blog.


0 sec read

Smashing Security #060: Meltdown, Spectre, and personal devices in the White House

The chips are down, as tech companies struggle to protect against the Meltdown and Spectre flaws. The White House is getting tough on leakers by banning personal devices from the West Wing. And someone has been embedding a Bitcoin wallet into their hand…

All this and much much more is discussed in latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by David McClelland.


1 min read