US-CERT is warning of a vulnerability in Microsoft’s implementation of Address Space Layout Randomization that affects Windows 8, Windows 8.1 and Windows 10.
Source: US-CERT Warns of ASLR Implementation Flaw In Windows
The purportedly safe link pointed users to a malicious Word document, laden with Emotet banking malware.
Source: McAfee’s own anti-hacking service exposed users to banking malware
Researchers warn of a Microsoft remote code execution bug that has persisted for 17 years in Office, leaving the OS unprotected until the vulnerability was patched Tuesday.
Source: Microsoft Patches 17-Year-Old Office Bug
Buried deep inside your computer’s Intel chip is the MINIX operating system and a software stack, which includes networking and a web server. It’s slow, hard to get at, and insecure as insecure can be.
Source: MINIX: Intel’s hidden in-chip operating system | ZDNet
Enterprises are grappling with widespread incidents of misconfigured servers leaking sensitive data to the public internet.
Source: Data Pours from Cloud—And ‘The Enemy is Us’
Yesterday, Microsoft released new standards that consumers should follow in order to have a highly secure Windows 10 device. These standards include the type of hardware that should be included in the system and the firmware features.
Source: Microsoft Releases Standards for Highly Secure Windows 10 Devices
In September 2017, we discovered a new targeted attack on financial institutions. Victims are mostly Russian banks but we also found infected organizations in Malaysia and Armenia.
Source: Silence – a new Trojan attacking financial organizations