Microsoft Windows – Page 6 – WindowsTechs.com

Years after claiming DogWalk wasn’t a vulnerability, Microsoft confirms flaw is being exploited and issues patch

Posted on August 11, 2022 by Graham Cluley

This week Microsoft finally released a patch for a zero-day security flaw being exploited by hackers, that the company had claimed since 2019 was not actually a vulnerability.

OpenTIP, command line edition

Posted on August 11, 2022 by Igor Kuznetsov

We released Python-based command line tools for our OpenTIP service that also implement a client class that you can reuse in your own tools. Continue reading OpenTIP, command line edition→

Luna and Black Basta — new ransomware for Windows, Linux and ESXi

Posted on July 20, 2022 by Marc Rivero, Jornt van der Wiel, Dmitry Galov, Sergey Lozhkin

This report discusses new ransomware, that targets Windows, Linux and ESXi systems: Luna written in Rust and Black Basta. Continue reading Luna and Black Basta — new ransomware for Windows, Linux and ESXi→

Windows 8.1 displays full-screen warning as it nears its last day of support

Posted on July 14, 2022 by Graham Cluley

Turn on a PC running Microsoft Windows 8.1 and you’re likely to be greeted with a full-screen message warning that the operating system will no longer be supported after 10 January 2023, and – critically – will no longer be receiving any security updates. Continue reading Windows 8.1 displays full-screen warning as it nears its last day of support→

DogWalk zero-day Windows bug receives patch – but not from Microsoft

Posted on June 10, 2022 by Graham Cluley

A Windows zero-day vulnerability dubbed “DogWalk” has not received an official patch yet from Microsoft, but that hasn’t stopped others from offering free fixes to protect users.

Read more in my article on the Hot for Security blog. Continue reading DogWalk zero-day Windows bug receives patch – but not from Microsoft→

IT threat evolution in Q1 2022. Non-mobile statistics

Posted on May 27, 2022 by AMR

PC malware statistics for the Q1 2022 includes data on miners, ransomware, banking Trojans, and other threats to Windows, macOS and IoT devices. Continue reading IT threat evolution in Q1 2022. Non-mobile statistics→

Financial cyberthreats in 2021

Posted on February 23, 2022 by Kaspersky

This report provides insight into 2021 financial threat trends and statistics, including data on banking malware for Windows and Android, banking, payment system and e-shop phishing, etc. Continue reading Financial cyberthreats in 2021→

MysterySnail attacks with Windows zero-day

Posted on October 12, 2021 by Boris Larin, Costin Raiu

We detected attacks with the use of an elevation of privilege exploit on multiple Microsoft Windows servers. Variants of the malware payload used along with the zero-day exploit were detected in widespread espionage campaigns. We are calling this cluster of activity MysterySnail. Continue reading MysterySnail attacks with Windows zero-day→

Detection evasion in CLR and tips on how to detect such attacks

Posted on September 21, 2021 by Alexander Rodchenko

In this article we demonstrate a detection evasion technique using CLR that may be useful for penetration testing as well as a couple of tips for SOCs to help detect such attacks. Continue reading Detection evasion in CLR and tips on how to detect such attacks→

Detection evasion in CLR and tips on how to detect such attacks

Posted on September 21, 2021 by Alexander Rodchenko