Microsoft patches massive MSHTML Remote Code Execution vulnerability
For the past few weeks companies have been struggling to cope with an easily exploited vulnerability in the MSHTML Internet Explorer browser rendering engine which was being used by hackers in phishing campaigns to hack company ne...
Despite second patch, PrintNightmare is back again
Microsoft has been dealing with a vulnerability where hackers can take over PCs by installing compromised printer drivers for nearly a month now, but it seems the issue is more complex and deeper than even Microsoft anticipated. D...
Patch Tuesday fixes PrintNightmare by requiring admin privileges to install print drivers
PrintNightmare is a vulnerability that allows privilege escalation by letting regular users install fake printer drivers which grant hackers admin privileges. After a number of patched is various efficacy Microsoft has chosen to f...
Microsoft says PrintNightmare is already being exploited, offers workaround
We reported two days ago on a new and unpatched Zero-day exploit that has just been released which grants attackers full Remote Code Execution capabilities on fully patched Windows Print Spooler devices. The hack, called PrintNi...
New Windows Server PrintNightmare Zero-day exploit may be the new Hafnium
A new and unpatched Zero-day exploit has just been released, along with Proof-of-Concept code, which grants attackers full Remote Code Execution capabilities on fully patched Windows Print Spooler devices. The hack, called Print...
Microsoft patches Chromium flaw in Edge Stable being exploited in the wild
Chromium 89 has a zero-day flaw that is currently being exploited in the wold. CVE-2021-21193 is a flaw in Google’s Blink rendering engine. It is a “use-after-free” vulnerability which means Blink has difficulty ...
Security: This tiny Windows 10 shortcut can corrupt your hard drive
Infosec researcher Jonas L has discovered a short string which, when it forms part of a filesystem pathway, will cause any Windows 10 hard drive to be corrupted. The short string can be delivered to the OS in a number of ways, suc...
Google’s Project Zero strikes again, release details of GitHub “high severity” flaw
Google’s Project Zero has struck again, releasing details of an unpatched vulnerability in Microsoft software. The company has today released information of a “high severity” exploit in GitHub which would allow r...