Microsoft outlines security principles and goals tied to executive compensation packages, following a scathing US Cyber Safety Review Board report in April 2024
expanding Microsoft's Secure Future Initiative Tom Krazit / Runtime : Microsoft wants to be judged on security Nick Heer / Pixel Envy : Microsoft Says It Is Prioritizing Security Again The Official Mi...
Microsoft outlines security principles and goals tied to executive compensation packages, following a scathing US Cyber Safety Review Board report in April 2024
expanding Microsoft's Secure Future Initiative Tom Warren / The Verge : Read Satya Nadella's Microsoft memo on putting security first Tom Krazit / Runtime : Microsoft wants to be judged on security An...
Microsoft says Russian state-sponsored hackers Midnight Blizzard accessed some of its “source code repositories and internal systems” following the January hack
and the Attack Isn't Over Pranav Dixit / Business Today : Microsoft discloses source code theft by Russian hackers Michael Kan / PCMag : Microsoft: Russian Hackers Accessed Company Source Code Jak Con...
Amazon, Google, and Cloudflare say a DDoS attack hit 398M RPS in August 2023, ~8x larger than the prior record, due to a new flaw; Google mitigated the attack
Assigner: Mitre Published: 2023-10-10Updated: 2023-10-11 The HTTP/2 protocol allows … Bill Toulas / BleepingComputer : New ‘HTTP/2 Rapid Reset’ zero-day attack breaks DDoS records Lucas Pardue / The C...
Apple releases iOS 17.0.3, which “addresses an issue that may cause iPhone to run warmer than expected”, and iPadOS 17.0.3
iOS 17 brings big updates to Phone, Messages and FaceTime that give … Apple Support : About the security content of iOS 17.0.3 and iPadOS 17.0.3 David Phelan / Forbes : Apple iOS 17.0.3 Release: Shoul...
Google's Project Zero finds 18 zero-day vulnerabilities in Exynos modems, affecting some Samsung, Vivo, and Google phones as well as wearables and vehicles
do this before you're next Maria Deutscher / SiliconANGLE : Google discovers 18 vulnerabilities in multiple Samsung chips Pierluigi Paganini / Security Affairs : Baseband RCE flaws in Samsung's Exynos...
Google details the commercial spyware Hermit, used in Kazakhstan and Italy, targeting Android and iOS; the iOS version has six exploits, including two zero-days
Saturday, June 25, 2022 // (IG): BB //Weekly Sponsor: Dataminr Deeba Ahmed / HackRead : ISPs Helping Attackers Install Hermit Spyware on Smartphones- Google Sergiu Gatlan / BleepingComputer : Spyware ...
Google has patched an actively exploited zero-day vulnerability in its Chrome 88 update
update now Ryan Naraine / SecurityWeek : Google Chrome, Microsoft IE Zero-Days in Crosshairs Gareth Corfield / The Register : Chrome zero-day bug that is actively being abused by bad folks affects Edg...
Google's Project Zero discloses a zero-day sandbox exploit on Windows 7 and 10; Microsoft says it has no evidence of the flaw being widely exploited
New Hacker Attack Confirmed By Google, Microsoft project-zero : Issue 2104: Windows Kernel cng.sys pool-based buffer overflow in IOCTL 0x390400 Nathan Ord / HotHardware.com News : Google Project Zero ...
Zoom apologizes for security failures, says it has 200M+ DAUs vs. 10M in Dec., and plans to freeze development of new features to focus on security and privacy
And An FBI Warning Brian Krebs / Krebs on Security : ‘War Dialing’ Tool Exposes Zoom's Password Problems Kari Paul / The Guardian : ‘Zoom is malware’: why experts worry about the video conferencing pl...