Content updates and product architecture: Sophos Endpoint
Credit to Author: Matt Wixey| Date: Thu, 15 Aug 2024 16:37:18 +0000
Sophos X-Ops takes a look at the content updates in Intercept X, and how we validate and release them
Read MoreComputer Security Articles
RSS Reader for Computer Security Articles
Security
Dozens of Google products targeted by scammers via malicious search ads
In a clever scheme designed to abuse Google in more than one way, scammers are redirecting users to browser locks.
Read MoreNearly All Google Pixel Phones Exposed by Unpatched Flaw in Hidden Android App
Credit to Author: Lily Hay Newman| Date: Thu, 15 Aug 2024 13:00:00 +0000
A fix is coming, but data analytics giant Palantir says it’s ditching Android devices altogether because Google’s response to the vulnerability has been troubling.
Read MoreA Single Iranian Hacker Group Targeted Both Presidential Campaigns, Google Says
Credit to Author: Andy Greenberg| Date: Wed, 14 Aug 2024 22:27:03 +0000
APT42, which is believed to work for Iran’s Revolutionary Guard Corps, targeted about a dozen people associated with both Trump’s and Biden’s campaigns this spring, according to Google’s Threat Analysis Group.
Read MoreRogue AI is the Future of Cyber Threats
Credit to Author: AI Team| Date: Thu, 15 Aug 2024 00:00:00 +0000
This is the first blog in a series on Rogue AI. Later articles will include technical guidance, case studies and more.
Read MoreAugust Patch Tuesday goes big
Credit to Author: Angela Gunn| Date: Thu, 15 Aug 2024 08:10:07 +0000
Monthly security release hauls out 85 CVEs… and that’s before the advisories
Read MoreMicrosoft patches bug that could have allowed an attacker to revert your computer back to an older, vulnerable version
A researcher used two Windows vulnerabilities to perform downgrade attacks. These flaws have now been patched by Microsoft
Read MoreChained for attack: OpenVPN vulnerabilities discovered leading to RCE and LPE
Credit to Author: Microsoft Threat Intelligence| Date: Thu, 08 Aug 2024 18:00:00 +0000
Microsoft researchers found multiple vulnerabilities in OpenVPN that could lead to an attack chain allowing remote code execution and local privilege escalation. This attack chain could enable attackers to gain full control over targeted endpoints, potentially resulting in data breaches, system compromise, and unauthorized access to sensitive information.
The post Chained for attack: OpenVPN vulnerabilities discovered leading to RCE and LPE appeared first on Microsoft Security Blog.
Read More