Microsoft Patch Tuesday, December 2021 Edition

Credit to Author: BrianKrebs| Date: Tue, 14 Dec 2021 22:23:44 +0000

Microsoft, Adobe, and Google all issued security updates to their products today. The Microsoft patches include six previously disclosed security flaws, and one that that is already being actively exploited. But this month’s Patch Tuesday is being overshadowed by the “Log4Shell” 0-day exploit in a popular Java library that web server administrators are now racing to find and patch amid widespread exploitation of the flaw.

Read more

Patch now! Microsoft Exchange is being attacked via ProxyShell

Credit to Author: Pieter Arntz| Date: Mon, 23 Aug 2021 13:21:08 +0000

A new threat actor is using ProxyShell vulnerabilities and PetiPotam attacks to drop the LockFile ransomware.

Categories: Exploits and vulnerabilities

Tags:

(Read more…)

The post Patch now! Microsoft Exchange is being attacked via ProxyShell appeared first on Malwarebytes Labs.

Read more

Patch now! Microsoft Exchange attacks target ProxyShell vulnerabilities

Credit to Author: Pieter Arntz| Date: Mon, 23 Aug 2021 13:21:08 +0000

A new threat actor is using ProxyShell vulnerabilities and PetiPotam attacks to drop the LockFile ransomware.

Categories: Exploits and vulnerabilities

Tags:

(Read more…)

The post Patch now! Microsoft Exchange attacks target ProxyShell vulnerabilities appeared first on Malwarebytes Labs.

Read more

Fintech Startup Offers $500 for Payroll Passwords

Credit to Author: BrianKrebs| Date: Mon, 10 May 2021 14:25:37 +0000

How much is your payroll data worth? Probably a lot more than you think. One financial startup that’s targeting the gig worker market is offering up to $500 to anyone willing to hand over the payroll account username and password given to them by their employer, plus a regular payment for each month afterwards in which those credentials still work.

Read more