user awareness

Recent cybersecurity research has revealed significant vulnerabilities within Microsoft's Windows Smart App Control (SAC) and SmartScreen security features. These flaws could potentially allow malicious actors to infiltrate targeted environments without triggering any alerts or requiring...

Recently published research reveals a significant security concern regarding Windows SmartScreen, a feature built into the operating system designed to protect users from malicious downloads. According to reports, vulnerabilities have existed within this security measure for a substantial...

The past few weeks haven't been easy for Microsoft. Following the Recall debacle, the technology giant is faced with ongoing security threats that concern a large portion of Windows users. Recent reports reveal that around 70% of all Windows users are potentially at risk due to a looming...

Original release date: October 28, 2020 Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 7 framework. See the ATT&CK for Enterprise version 7 for all referenced threat actor tactics and techniques. This joint cybersecurity advisory...

Original release date: August 14, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. The Cybersecurity and Infrastructure Security Agency (CISA)...

Does anyone feel that phishing has developed? E.g. in my personal feeling, there are fewer email scams nowadays. Your thoughts, guys?

Today, a single breach, physical or virtual, can cause millions of dollars of damage to an organization and potentially billions in financial losses to the global economy. Each week seems to bring a new disclosure of a cybersecurity breach somewhere in the world. As we look at the current state...

Attention all members. Today, I tapped on a few links while searching for recipes. On about the 4th link, a " Warning Message " appeared to come from an authorized microsoft repair company. The warning stated that my computer will be locked if I shut it down and that I should...

Hi Both my wife and I are getting bogus emails from people we know that we know they aren't sending intentionally. What these messages have in common is the code goo.gl/ I kind of understand that this is a signal to shorten the visible address. The messages have no subject, have a message...

PC World just posted a article where Bitdefender found S5Mark VPN to actually be a rootkit and not a VPN. Article link : S5Mark is a 'VPN' that is actually a rootkit in disguise, BitDefender says

Total Meltdown? Is my system vulnerable? Only Windows 7 x64 systems patched with the 2018-01 or 2018-02 patches are vulnerable. If your system isn't patched since December 2017 or if it's patched with the 2018-03 2018-03-29 patches or later it will be secure. Reference and further...

Hope this one is a very informative topic for a wide margin of people. I came to know and interested on this topic after a social engineering manipulation on my wife's banking account. Like everybody we also get many prank calls and mails. One day somebody called her and asked for the pin number...

Severity Rating: Important Revision Note: V1.0 (August 11, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft System Center Operations Manager. The vulnerability could allow elevation of privilege if a user visits an affected website by way of a...

Original release date: July 14, 2015 | Last revised: July 15, 2015 Systems Affected Microsoft Windows systems with Adobe Flash Player installed. Overview Used in conjunction, recently disclosed vulnerabilities in Adobe Flash and Microsoft Windows may allow a remote attacker to execute...

I recently made a support call to what I thought was HP customer support. The rep that answered tried to convince me I had a virus in my hard drive and that I needed to purchase Microsoft Forefront Security Service. At this point I ended the call, however I did foolishly allow the rep to access...

Severity Rating: Critical Revision Note: V1.0 (November 11, 2014): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a logged-on user visits a specially crafted website that...

Original release date: October 22, 2014 Systems Affected Microsoft Windows Overview Ransomware is a type of malicious software (malware) that infects a computer and restricts access to it until a ransom is paid to unlock it. This Alert is the result of Canadian Cyber Incident Response...

Severity Rating: Important Revision Note: V1.0 (October 14, 2014): Bulletin published. Summary: This security update resolves a publicly disclosed vulnerability in ASP.NET MVC. The vulnerability could allow security feature bypass if an attacker convinces a user to click a specially crafted link...

Last week it was on a few news sites and I saw it on CCN that russians hacked many big sites, but none where named, Apparently there were major companies hit. I have in the last few weeks had a big increase on numerous of my emails getting spammed so I can see a few must of got hit. I got an...

Severity Rating: Important Revision Note: V1.0 (February 11, 2014): Bulletin published. Summary: This security update resolves a publicly disclosed vulnerability in Microsoft XML Core Services included in Microsoft Windows. The vulnerability could allow information disclosure if a user views a...