News

south korea,trickbot gang member,alleged trickbot developer,time,kbs news,threat,member in south,trickbot’s,authorities arrest,report,arrest another trickbot

Microsoft on Tuesday warned of an actively exploited zero-day flaw impacting Internet Explorer that’s being used to hijack vulnerable Windows systems by leveraging weaponized Office documents. Tracked as CVE-2021-40444 (CVSS score: 8.8), the remote code execution flaw is rooted in MSHTML (aka Trident), a proprietary browser engine for the now-discontinued Internet Explorer and which is…

The term “zero-trust” may sound gimmicky at first glance, but in reality, organizations are increasingly adopting this approach to shore up network security from multiple angles.  Forrester coined the term zero-trust in 2010 to describe the idea that nothing is inherently safe and that everything must be continuously verified. You may have heard the motto,…

Howard University in Washington DC has been hit by a ransomware attack which has forced it to cancel classes for two days running. The university stated on Monday 6 September that its technology team detected “unusual activity on the university’s network” on 3 September which caused it to shut down its network to investigate the…

New 0-Day Attack Targeting Windows Users With Microsoft Office Documents | IT Security News 8. September 2021 This article has been indexed from The Hacker News Microsoft on Tuesday warned of an actively exploited zero-day flaw impacting Internet Explorer that’s being used to hijack vulnerable Windows systems by leveraging weaponized Office documents.Tracked as CVE-2021-40444 (CVSS…

Breach Notification , Critical Infrastructure Security , Cybercrime Classes Canceled as the University’s IT Staff Repairs Damage Dan Gunderman (dangun127) • September 7, 2021     Howard University detected the cyberattack late last week. (Photo: Derek E. Morton via Wiki/CC) Stay tuned for updates on this developing story. See Also: Top 50 Security Threats …

Microsoft today shared mitigation for a remote code execution vulnerability in Windows that is being exploited in targeted attacks against Office 365 and Office 2019 on Windows 10. The flaw is in MSHTML, the browser rendering engine that is also used by Microsoft Office documents. Ongoing attacks against Office 365 Identified as CVE-2021-40444, the security issue…

Five security vulnerabilities in commonly used infusion pump products from B. Braun Medical Inc. could collectively allow malicious actors to dangerously modify the dose of medicines delivered to patients, says Douglas McKee, a security researcher on a team at security vendor McAfee Enterprise, which recently discovered the flaws. The vulnerabilities exist in both the B….

Breach Notification , Endpoint Security , Governance & Risk Management Details on 2 of the 3 Vulnerabilities Released Mihir Bagwe • September 7, 2021     Gynvael Coldwind, a security researcher on Google’s security team, has identified three critical vulnerabilities affecting several Netgear smart switch products that, if exploited, give the attacker complete control over…

Cybersecurity White House hits the gas on zero trust By Chris Riotta Sep 07, 2021   The push to convert federal networks, systems and devices to a zero trust security architecture is accelerating, with the release of three new draft guidance documents as part of the White House administration’s push to improve the…