user awareness

Microsoft is gearing up to deploy a significant update to Windows 11, known as the 24H2 update, which has raised concerns among users about its potential impact on solid-state drive (SSD) performance. The primary feature that has drawn attention is the activation of BitLocker, Microsoft’s device...

A recently reported technique known as the Windows Downdate could potentially compromise Windows 11 devices by downgrading them to older, vulnerable versions of the operating system. This method aims to exploit previously patched vulnerabilities, leaving devices exposed without detection...

In a recent report by Elastic Security Labs, researchers have unveiled a troubling method that allows malicious applications to bypass Windows security alerts undetected for over six years. This research highlights vulnerabilities within the Windows SmartScreen and Smart App Control (SAC), the...

Recent cybersecurity research has revealed significant vulnerabilities within Microsoft's Windows Smart App Control (SAC) and SmartScreen security features. These flaws could potentially allow malicious actors to infiltrate targeted environments without triggering any alerts or requiring...

Recently published research reveals a significant security concern regarding Windows SmartScreen, a feature built into the operating system designed to protect users from malicious downloads. According to reports, vulnerabilities have existed within this security measure for a substantial...

The past few weeks haven't been easy for Microsoft. Following the Recall debacle, the technology giant is faced with ongoing security threats that concern a large portion of Windows users. Recent reports reveal that around 70% of all Windows users are potentially at risk due to a looming...

Original release date: October 28, 2020 Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 7 framework. See the ATT&CK for Enterprise version 7 for all referenced threat actor tactics and techniques. This joint cybersecurity advisory...

Original release date: August 14, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. The Cybersecurity and Infrastructure Security Agency (CISA)...

Does anyone feel that phishing has developed? E.g. in my personal feeling, there are fewer email scams nowadays. Your thoughts, guys?

Today, a single breach, physical or virtual, can cause millions of dollars of damage to an organization and potentially billions in financial losses to the global economy. Each week seems to bring a new disclosure of a cybersecurity breach somewhere in the world. As we look at the current state...

Attention all members. Today, I tapped on a few links while searching for recipes. On about the 4th link, a " Warning Message " appeared to come from an authorized microsoft repair company. The warning stated that my computer will be locked if I shut it down and that I should...

Hi Both my wife and I are getting bogus emails from people we know that we know they aren't sending intentionally. What these messages have in common is the code goo.gl/ I kind of understand that this is a signal to shorten the visible address. The messages have no subject, have a message...

PC World just posted a article where Bitdefender found S5Mark VPN to actually be a rootkit and not a VPN. Article link : S5Mark is a 'VPN' that is actually a rootkit in disguise, BitDefender says

Total Meltdown? Is my system vulnerable? Only Windows 7 x64 systems patched with the 2018-01 or 2018-02 patches are vulnerable. If your system isn't patched since December 2017 or if it's patched with the 2018-03 2018-03-29 patches or later it will be secure. Reference and further...

Hope this one is a very informative topic for a wide margin of people. I came to know and interested on this topic after a social engineering manipulation on my wife's banking account. Like everybody we also get many prank calls and mails. One day somebody called her and asked for the pin number...

Severity Rating: Important Revision Note: V1.0 (August 11, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft System Center Operations Manager. The vulnerability could allow elevation of privilege if a user visits an affected website by way of a...

Original release date: July 14, 2015 | Last revised: July 15, 2015 Systems Affected Microsoft Windows systems with Adobe Flash Player installed. Overview Used in conjunction, recently disclosed vulnerabilities in Adobe Flash and Microsoft Windows may allow a remote attacker to execute...

I recently made a support call to what I thought was HP customer support. The rep that answered tried to convince me I had a virus in my hard drive and that I needed to purchase Microsoft Forefront Security Service. At this point I ended the call, however I did foolishly allow the rep to access...

Severity Rating: Critical Revision Note: V1.0 (November 11, 2014): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a logged-on user visits a specially crafted website that...

Original release date: October 22, 2014 Systems Affected Microsoft Windows Overview Ransomware is a type of malicious software (malware) that infects a computer and restricts access to it until a ransom is paid to unlock it. This Alert is the result of Canadian Cyber Incident Response...