SEARCH
Archive
Microsoft Warns of Unpatched Office Zero Day
The Microsoft zero-day flaw (CVE-2023-36884) is being leveraged by a Russian-based cybercriminal group in phishing emails sent to defense and government entities in Europe and North America.
RedDriver Abuses Windows Driver Policy Loophole
An undocumented malicious driver called RedDriver uses an open-source tool to forge signature timestamps, as a way to bypass Microsoft’s Windows driver signature enforcement policies.
Microsoft Azure Serial Console Abused in UNC3944 Attacks
An UNC3944 attack highlights how threat actors can abuse legitimate cloud resources for various purposes after compromising the Azure administrator's account.
Microsoft Fixes Windows Bug, Secure Boot Bypass Under Active Attack
Microsoft has patched two flaws (CVE-2023-29336 and CVE-2023-24932) that have been actively exploited.
PaperCut Flaws Exploited to Deploy Clop, LockBit Ransomware
Microsoft has attributed exploitation attempts of CVE-2023-27350 and CVE-2023-27351 to a Clop ransomware affiliate.