XLoader Windows InfoStealer Malware Now Upgraded to Attack macOS Systems – Tempemail

Cybersecurity researchers on Wednesday disclosed details of an evolving malware that has now been upgraded to steal sensitive information from Apple’s macOS operating system. The malware, dubbed “XLoader,” is a successor to another well-known Windows-based info stealer called Formbook that’s known to vacuum credentials from various web browsers, collect screenshots, Continue Reading

New Windows and Linux Flaws Give Attackers Highest System Privileges – Tempemail

Microsoft’s Windows 10 and the upcoming Windows 11 versions have been found vulnerable to a new local privilege escalation vulnerability that permits users with low-level permissions access Windows system files, in turn, enabling them to unmask the operating system installation password and even decrypt private keys. “Starting with Windows 10 Continue Reading

This New Malware Hides Itself Among Windows Defender Exclusions to Evade Detection – Tempemail

Cybersecurity researchers on Tuesday lifted the lid on a previously undocumented malware strain dubbed “MosaicLoader” that singles out individuals searching for cracked software as part of a global campaign. “The attackers behind MosaicLoader created a piece of malware that can deliver any payload on the system, making it potentially profitable Continue Reading

Researcher Uncover Yet Another Unpatched Windows Printer Spooler Vulnerability – Tempemail

Merely days after Microsoft sounded the alarm on an unpatched security vulnerability in the Windows Print Spooler service, possibly yet another zero-day flaw in the same component has come to light, making it the fourth printer-related flaw to be discovered in recent weeks. “Microsoft Windows allows for non-admin users to Continue Reading

Microsoft Warns of New Unpatched Windows Print Spooler Vulnerability – Tempemail

Microsoft on Thursday shared fresh guidance on yet another vulnerability affecting the Windows Print Spooler service, stating that it’s working to address it in an upcoming security update. Tracked as CVE-2021-34481 (CVSS score: 7.8), the issue concerns a local privilege escalation flaw that could be abused to perform unauthorized actions Continue Reading

Update Your Windows PCs to Patch 117 New Flaws, Including 9 Zero-Days – Tempemail

Microsoft rolled out Patch Tuesday updates for the month of July with fixes for a total of 117 security vulnerabilities, including nine zero-day flaws, of which four are said to be under active attacks in the wild, potentially enabling an adversary to take control of affected systems. Of the 117 Continue Reading

WildPressure APT Emerges With New Malware Targeting Windows and macOS – Tempemail

A malicious campaign that has set its sights on industrial-related entities in the Middle East since 2019 has resurfaced with an upgraded malware toolset to strike both Windows and macOS operating systems, symbolizing an expansion in both its targets and its strategy around distributing threats. Russian cybersecurity firm attributed the Continue Reading

Microsoft Issues Emergency Patch for Critical Windows PrintNightmare Vulnerability – Tempemail

Microsoft has shipped an emergency out-of-band security update to address a critical zero-day vulnerability — known as “PrintNightmare” — that affects the Windows Print Spooler service and can permit remote threat actors to run arbitrary code and take over vulnerable systems. Tracked as CVE-2021-34527 (CVSS score: 8.8), the remote code Continue Reading

Researchers Leak PoC Exploit for a Critical Windows RCE Vulnerability – Tempemail

A proof-of-concept (PoC) exploit related to a remote code execution vulnerability affecting Windows Print Spooler and patched by Microsoft earlier this month was briefly published online before being taken down. Identified as CVE-2021-1675, the security issue could grant remote attackers full control of vulnerable systems. Print Spooler manages the printing Continue Reading

Update Your Windows Computers to Patch 6 New In-the-Wind Zero-Day Bugs – Tempemail

Microsoft on Tuesday released another round of security updates for Windows operating systems and other supported software, squashing 50 vulnerabilities, including 6 zero-days that are said to be under active attack. The flaws were identified and resolved in Microsoft Windows, .NET Core and Visual Studio, Microsoft Office, Microsoft Edge (Chromium-based Continue Reading