Microsoft

Pierluigi Paganini August 19, 2015
Critical Zero-Day flaw – Microsoft Pushes Emergency IE Patch

Microsoft has pushed an emergency patch to remediate a zero-day vulnerability in Internet Explorer that is actively being exploited in-the-wild. Today, August 18th, 2015, Microsoft released an emergency patch after being notified of a critical vulnerability in all supported versions of Internet Explorer. All versions of Microsoft Internet Explorer from IE7 to IE11 are affected by this zero-day vulnerability. […]

Pierluigi Paganini August 18, 2015
Windows 10 allows Microsoft to remote disable pirated software and hardware

A report revealed that Microsoft could scan PCs running Windows 10 searching for pirated games and unauthorized hardware and disable them. One thing is certain, for better or for worse, we are talking a lot about the new Microsoft operating system Windows 10. The experts mainly expressed privacy concerns around the Windows 10 OS, they […]

Pierluigi Paganini August 02, 2015
Microsoft Windows 10 spies on you by default

While Microsoft is offering for free it new Windows 10 OS, security experts argue that the cost for user privacy is much higher. Microsoft Windows 10 is the new operating system of the IT giant, the newborn already reached more than 14 million downloads in just two days. The experts who have already analyzed Windows 10 […]

Pierluigi Paganini July 24, 2015
ZDI disclosed 4 zero-day vulnerabilities in Internet Explorer

The HP Zero Day Initiative has disclosed four new zero-day vulnerabilities in Internet Explorer that can be exploited by attackers to remotely execute code. The HP’s Zero Day Initiative has disclosed four new zero-day vulnerabilities in Internet Explorer that can be exploited by attackers to remotely execute code. The four zero-day flaws affect different components of the browser […]

Pierluigi Paganini July 21, 2015
Microsoft released out-of-band patch following Hacking Team hack

According to the security experts at FireEye, Microsoft releases out-of-band patch for all Windows version after Hacking Team hack. Microsoft released an out-of-band patch to fix a critical security issue in the Windows Adobe Type Manager Library that could be exploited by attackers to execute arbitrary code remotely on the targeted machine. The exploitation of […]

Pierluigi Paganini June 23, 2015
Microsoft will not patch an IE exploit affecting million 32bit systems

Security expert Dustin Childs publicly disclosed a Microsoft IE exploit that affects only 32-bit IE platforms which are currently used by millions of users. The HP security expert Dustin Childs publicly disclosed a Microsoft IE exploit based on a flaw that resides in the Address Space Layout Randomisation (ASLR). The ASLR is a security feature implemented […]

Pierluigi Paganini May 04, 2015
Australian 19 year-old who hacked Microsoft and US Army is fugitive

An Australian teenager who hacked Microsoft, Valve and the US Army has left the Australia. The Interpol is searching for him in Europe. An Australian teenager, who had allegedly hacked into Microsoft and the US Army websites left Australia to escape the capture. The Australian authorities have informed the Interpol, which is involved in the research […]

Pierluigi Paganini April 30, 2015
Macros based malware on the rise (Once Again)

Microsoft is observing a major spike in the volume of malware using macros since the beginning of the year. The infection method was very common in the past I remember when I was starting my career, around 2006 that a lot of the existent malware would arrive to their victims trough Word/Excel macros, and that […]

Pierluigi Paganini April 17, 2015
MS15-034 flaw leaves over 70 million sites vulnerable to cyber attacks

Security experts worldwide have discovered that threat actors are exploiting the Microsoft Zero-Day vulnerability MS15-034 in cyber attacks. Security researchers at SANS Internet Storm Center revealed that the critical remote code execution vulnerability MS15-034 affecting the Windows HTTP protocol stack is being actively exploited in the wild. The experts explained that the MS15-034 flaw affects […]

Pierluigi Paganini April 14, 2015
Redirect to SMB flaw affects all versions of windows

The Redirect to SMB vulnerability affects all supported versions of Windows and could be exploited to steal users’ credentials for various services. Experts at Cylance have discovered a new credential hijacking vulnerability dubbed Redirect to SMB that affects all versions of Windows OSs, including the upcoming Windows 10. The Redirect to SMB could be exploited by an attacker […]