-
Microsoft’s December 2023 Patch Tuesday Includes Four Critical Flaws
Microsoft’s December 2023 Patch Tuesday was relatively light to end the year. Four out of the 34 flaws announced were critical. Learn how that affects you.
-
October 2023 Patch Tuesday Includes Three Zero-Days Flaws
Microsoft’s October 2023 Patch Tuesday covers 103 CVEs, including three zero-day flaws. Review our breakdown of this Patch Tuesday.
-
Microsoft Patch Tuesday Includes Word, Streaming Service Zero-Days
Microsoft’s Patch Tuesday for September 2023 includes 59 vulnerabilities, five of them rated critical and two currently being exploited in the wild. The two vulnerabilities currently being exploited are CVE-2023-36761,…
-
Patch Tuesday Targets 74 Flaws, Including Microsoft Teams, Office
Microsoft’s August 2023 updates include six critical vulnerabilities, including a pair of Teams flaws that ‘deserve immediate remediation attention.’
-
SandboxAQ Open Sources Cryptography Management Tool for Post-Quantum Era
SandboxAQ today introduced an open-source cryptography management framework built for the post-quantum era. The AI and quantum spin-out from Alphabet uses the Sandwich framework for its SandboxAQ Security Suite, currently…
-
New SEC Rules Require Breach Disclosure within Four Days
The U.S. Securities and Exchange Commission this week announced new rules mandating the disclosure of cybersecurity incidents as well as ongoing risk management, strategy, and governance. The rules, which will…
-
Microsoft Unsure How Chinese Hackers Stole MSA Key to Breach U.S. Agencies
Microsoft has hardened security following a Chinese hack of U.S. government agency email accounts, but some details remain a mystery. Even as the threat has passed, Microsoft officials are still…
-
Malicious Microsoft Drivers Could Number in the Thousands: Cisco Talos
After Microsoft revealed that some signed Windows drivers are malicious, security researchers discussed how big the problem is.
-
Microsoft Patch Tuesday Addresses 130 Flaws – Including Unpatched RomCom Exploit
Microsoft’s latest vulnerabilities include more than 100 malicious drivers and an unusual announcement of an unpatched Office and Windows flaw.
-
Enterprise SIEMs Miss 76 Percent of MITRE ATT&CK Techniques
Most SIEM systems are missing the vast majority of MITRE ATT&CK techniques. Here’s what to do.
