Navigation section

vulnerabilities

  1. Mike

    Windows 8 January 10, 2023 - Official Support Ended for Windows 8.1

    Hello everyone, I wanted to let you all know that Microsoft ended mainstream support for Windows 8.1 on January 10, 2023. This means that there will be no more security updates or technical assistance for this operating system. It is important to note that after this date, using a computer...
    • Mike
    • Thread
    • microsoft support operating system security updates support end technical assistance upgrade vulnerabilities windows 10 windows 8.1 windows upgrade
    • Replies: 1
    • Forum: Windows Help and Support
  2. whoosh

    VIDEO Dangers Of Using Windows 7 in 2022

    :shocked:
    • whoosh
    • Thread
    • computing dangers outdated risks security software support technology vulnerabilities windows 7
    • Replies: 1
    • Forum: The Water Cooler
  3. whoosh

    NEWS Thousands and thousands of Home windows laptops contaminated with ‘unremovable’ malware

    Safety consultants are warning that tens of millions of Home windows laptops are contaminated with malware that’s successfully ‘unremovable’. Over 100 laptops made by expertise agency Lenovo look like affected by a trio of important vulnerabilities which permit hackers to secretly set up malware...
    • whoosh
    • Thread
    • detection firmware hackers laptops lenovo malware security uefi vulnerabilities windows
    • Replies: 1
    • Forum: The Water Cooler
  4. whoosh

    VIDEO ESET discovers 3 serious security vulnerabilities in Lenovo laptops

    :eek:
    • whoosh
    • Thread
    • alerts cybersecurity eset laptops lenovo security technology update vulnerabilities
    • Replies: 1
    • Forum: The Water Cooler
  5. News

    AA21-321A: Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities in Furtherance of Malicious Activi

    Original release date: November 17, 2021 Summary Actions to Take Today to Protect Against Iranian State-Sponsored Malicious Cyber Activity • Immediately patch software affected by the following vulnerabilities: CVE-2021-34473, 2018-13379, 2020-12812, and 2019-5591. • Implement Link Removed. •...
    • News
    • Thread
    • apt authentication cisa compromise cybersecurity data exfiltration exploitation fbi fortinet indicators infrastructure iran malware microsoft exchange mitigation patch management protection ransomware threat actors vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  6. News

    VIDEO AA21-265A: Conti Ransomware

    Original release date: September 22, 2021 Summary Immediate Actions You Can Take Now to Protect Against Conti Ransomware • Use Link Removed. • Segment and segregate networks and functions. • Update your operating system and software. Note: This Alert uses the MITRE Adversarial Tactics...
    • News
    • Thread
    • attack techniques cisa conti credential access cybersecurity data protection exploit fbi incident response malware mitigation multi-factor authentication network security phishing privilege escalation ransomware security updates threat intelligence vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts
  7. F

    Windows 10 Lockbit 2.0??

    Do we have a new assailant? This sounds worse than the printnightmare scenario which I don't believe has been fixed yet... any thoughts?
    • Fenway16
    • Thread
    • assailants cybersecurity lockbit malware printnightmare ransomware securityupdates threats vulnerabilities windows
    • Replies: 14
    • Forum: Windows Help and Support
  8. News

    AA21-209A: Top Routinely Exploited Vulnerabilities

    Original release date: July 28, 2021 Summary This Joint Cybersecurity Advisory was coauthored by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Australian Cyber Security Centre (ACSC), the United Kingdom’s National Cyber Security Centre (NCSC), and the U.S. Federal Bureau...
    • News
    • Thread
    • advisory cisa cloud security cve cybersecurity exploitation fbi incident response malware microsoft network security patch patch management ransomware remote code execution security updates threat actors vpn vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  9. News

    AA21-200B: Chinese State-Sponsored Cyber Operations: Observed TTPs

    Original release date: July 19, 2021 Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9, and MITRE D3FEND™ framework, version 0.9.2-BETA-3. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques...
    • News
    • Thread
    • chinese cyber operations cisa credential access cyber intelligence cybersecurity data exfiltration exploitation fbi government advisory incident response information security lateral movement malware mitre att&ck national security network security tactics techniques threat actors vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  10. News

    AA21-200A: Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department

    Original release date: July 19, 2021 Summary This Joint Cybersecurity Advisory was written by the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) to provide information on a Chinese Advanced Persistent Threat (APT) group known in open-source...
    • News
    • Thread
    • apt40 china compromise compromised credentials credential access cyber threat cybersecurity exfiltration hainan indicators information security intellectual property lateral movement malware mitre network defense state security tactics threat actors vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  11. whoosh

    VIDEO Latest Windows 10 Update Fixes 50 Vulnerabilities

    :cool:
    • whoosh
    • Thread
    • fixes microsoft patch security system update update vulnerabilities windows 10
    • Replies: 1
    • Forum: The Water Cooler
  12. News

    Releasing Windows 10 Build 19043.1052 (21H1) to Beta & Release Preview Channels

    Hello Windows Insiders, today we’re releasing 21H1 Build 19043.1052 (KB5003637) to the Beta Channel & Release Preview Channel for those Insiders who are on 21H1. See our blog post here on preparing the Windows 10 May 2021 Update (21H1) for release. This security update includes quality...
    • News
    • Thread
    • 21h1 app platform beta channel build 19043 cloud infrastructure html platform improvements insider program microsoft quality improvements release preview security update storage virtualization vulnerabilities windows 10 windows authentication windows kernel windows management windows update
    • Replies: 0
    • Forum: Live RSS Feeds
  13. whoosh

    VIDEO Two Year Old Linux Backdoor Found, Microsoft Finds IoT Vulnerabilities - ThreatWire

    :eek: :eek:
    • whoosh
    • Thread
    • backdoor iot linux microsoft threatwire vulnerabilities
    • Replies: 1
    • Forum: The Water Cooler
  14. News

    AA21-110A: Exploitation of Pulse Connect Secure Vulnerabilities

    Original release date: April 20, 2021 Summary The Cybersecurity and Infrastructure Security Agency (CISA) is aware of compromises affecting U.S. government agencies, critical infrastructure entities, and other private sector organizations by a cyber threat actor—or actors—beginning in June 2020...
    • News
    • Thread
    • cisa credential harvesting cyber threat cybersecurity exploit incident response integrity tool ivanti malware mitigations network security password management patch management pulse connect secure rce vulnerability security advisory software update threat actor vulnerabilities webshells
    • Replies: 0
    • Forum: Security Alerts
  15. News

    AA21-062A: Mitigate Microsoft Exchange Server Vulnerabilities

    Original release date: March 3, 2021 Summary Cybersecurity and Infrastructure Security (CISA) partners have observed active exploitation of vulnerabilities in Microsoft Exchange Server products. Successful exploitation of these vulnerabilities allows an unauthenticated attacker to execute...
    • News
    • Thread
    • active directory cve-2021-26855 cybersecurity exchange server forensic analysis incident response indicators of compromise malicious activity microsoft mitigations monitoring network security patches remote code execution security tactics threat intelligence user-agents vulnerabilities webshells
    • Replies: 0
    • Forum: Security Alerts
  16. News

    AA21-055A: Exploitation of Accellion File Transfer Appliance

    Original release date: February 24, 2021 Summary This joint advisory is the result of a collaborative effort by the cybersecurity authorities of Australia,[Link Removed] New Zealand,[2] Singapore,[3] the United Kingdom,[4] and the United States.[Link Removed][6] These authorities are aware of...
    • News
    • Thread
    • accellion cisa cyber actors cybersecurity data theft end-of-life exploitation extortion file sharing file transfer incident response iocs malware mitigation patch remediation security advisory sql injection vulnerabilities zero-day
    • Replies: 0
    • Forum: Security Alerts
  17. News

    AA20-352A: Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations

    Original release date: December 17, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 8 framework. See the ATT&CK for Enterprise version 8 for all referenced threat actor tactics and techniques. The Cybersecurity and Infrastructure...
    • News
    • Thread
    • apt compliance cybersecurity data exfiltration government security identity theft incident response infrastructure security malicious code malware mitigation operational security privileged access remediation saml solarwinds supply chain technical details threat detection vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  18. News

    AA20-345A: Cyber Actors Target K-12 Distance Learning Education to Cause Disruptions and Steal Data

    Original release date: December 10, 2020<br/><h3>Summary</h3><p>This Joint Cybersecurity Advisory was coauthored by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC).</p>...
    • News
    • Thread
    • command and control cyber threats cybersecurity data theft ddos distance learning education it security k-12 malware mitigations network security phishing ransomware remote learning social engineering student data trojan video conferencing vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  19. News

    AA20-336A: Advanced Persistent Threat Actors Targeting U.S. Think Tanks

    Original release date: December 1, 2020<br/><h3>Summary</h3><p class="tip-intro" style="font-size: 15px;"><em>This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&amp;CK®) framework. See the <a href="Techniques - Enterprise | MITRE ATT&CK®">ATT&amp;CK for...
    • News
    • Thread
    • apt cisa cybersecurity data exfiltration fbi incident response malicious activity mitigation multi-factor authentication network security phishing remote access security awareness security policy social engineering tactics techniques think tanks threat actors vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  20. News

    AA20-296B: Iranian Advanced Persistent Threat Actors Threaten Election-Related Systems

    Original release date: October 22, 2020 Summary The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are warning that Iranian advanced persistent threat (APT) actors are likely intent on influencing and interfering with the U.S. elections to...
    • News
    • Thread
    • cyber threats cybersecurity ddos attack disinformation election security elections f5 vpn information warfare iranian apt malicious actors misinformation multi-factor authentication public trust remote desktop security mitigations spear-phishing sql injection voter interference vulnerabilities web application
    • Replies: 0
    • Forum: Security Alerts
Back
Top