Cruft – WindowsTechs.com

MSFT ‘The Reaper’

Posted on March 25, 2021 by Marc Handelman

via

The post MSFT ‘The Reaper’ appeared first on Security Boulevard.
Continue reading MSFT ‘The Reaper’→

MSFT X GITHUB: Cruft Thereof

Posted on November 3, 2020 by Marc Handelman

Microsoft Corporation’s Github is now laboring under the cruft that is Microsoft… Image Source: Twitter, via bleepingcomputer.com

Recently purchased Github (now owned by Microsoft Corporation (NASDAQ: MSFT) apparently forgot (or neglected) to renew i… Continue reading MSFT X GITHUB: Cruft Thereof→

$500k: Miscreants Flog Zoom 0Days (One for Windows, One For macOS)

Posted on April 17, 2020 by Marc Handelman

via Vice reporter Lorenzo Franceschi-Bicchierai, comes this outstanding news piece on the Zoom video-conference 0day hacks debacle, the miscreants thereto; and of course, there’s this. h/t
The post $500k: Miscreants Flog Zoom 0Days… Continue reading $500k: Miscreants Flog Zoom 0Days (One for Windows, One For macOS)→

LTE Insecurity Cruft

Posted on February 24, 2020 by Marc Handelman

via Charlie Osborne writing for ZD-Net’s Zero Day, comes the news of a flaw in famously-claimed-to-be-secure LTE evirons, where miscreants-of-the-day can fraudulently subscribe to services on behalf of witless users. Heretofore granted the Prime Anno… Continue reading LTE Insecurity Cruft→

US DOE OIG Report: Thousands of Severe Security Flaws Discovered

Posted on November 27, 2019 by Marc Handelman

via the DOE’s Office of Inspector General, comes critically important news in a highly troubling US DOE OIG Report, for the Department, energy consumers in the United States and interconnected energy firms servicing the energy requirements of neighbor… Continue reading US DOE OIG Report: Thousands of Severe Security Flaws Discovered→

Microsoft Decides To Finally Block Additional Files In OWA, Subsequently Provides Workarounds To Carry On Transmitting Them

Posted on September 30, 2019 by Marc Handelman

via Zeljka Zorz, Managing Editor at HelpNet Security, comes news of Microsoft Corporation’s (NASDAQ: MSFT) dollar-short-and-day-late decision to block an additional forty additional file types from their deeply flawed Outlook on the Web product… Oh,… Continue reading Microsoft Decides To Finally Block Additional Files In OWA, Subsequently Provides Workarounds To Carry On Transmitting Them→

Introduction to the Finite State Supply Chain Assessment of Huawei

Posted on June 29, 2019 by Marc Handelman

Sums it up quite succinctly indeed…
Permalink
The post Introduction to the Finite State Supply Chain Assessment of Huawei appeared first on Security Boulevard.
Continue reading Introduction to the Finite State Supply Chain Assessment of Huawei→

NolaCon 2019, Chris Holt’s ‘Formula For A Bug Bounty Program’

Posted on May 29, 2019 by Marc Handelman

Videography Credit: To Irongeek (Adrian Crenshaw) and Crew.
The post NolaCon 2019, Chris Holt’s ‘Formula For A Bug Bounty Program’ appeared first on Security Boulevard.
Continue reading NolaCon 2019, Chris Holt’s ‘Formula For A Bug Bounty Program’→

Information Security Hubris: The Cruft of Wipro

Posted on April 26, 2019 by Marc Handelman

Sterling Example of both the Hubris and Cruft of Wipro. Would you trust the Indian outsourcing company with your organizations’ information security?
The post Information Security Hubris: The Cruft of Wipro appeared first on Security Boulevard.
Continue reading Information Security Hubris: The Cruft of Wipro→

Apache Server Bug Coughs Up Root

Posted on April 4, 2019 by Marc Handelman

Charles Fol(the bug discoverer, and Security Engineer at Ambionics and maintainer of PHPGGC: PHP Generic Gadget Chains), has published his data related to this highly critical root level bug. This as a pernicious attack against the root environment of… Continue reading Apache Server Bug Coughs Up Root→