Category: Microsoft

News Wrap: DejaBlue Bugs and Biometrics Data Breaches
biometrics, biometrics data

News Wrap: DejaBlue Bugs and Biometrics Data Breaches

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can ... Read More

Microsoft won’t shift on AI recordings policy
AI, Cortana

Microsoft won’t shift on AI recordings policy

Microsoft may have been caught red-handed letting contractors listen to sensitive conversations with its AI, but that doesn't mean it's going to stop. . Microsoft ... Read More

HTTP Bugs Open Websites to DoS Attacks
Akamai, Ambassador

HTTP Bugs Open Websites to DoS Attacks

Eight vulnerabilities in the HTTP/2 server implementations were found in vendors Amazon, Apple, Microsoft and Apache. . HTTP Bugs Open Websites to DoS Attacks ThreatpostSource ... Read More

Energy Sector Phish Swims Past Microsoft Email Security via Google Drive
Black Hat 2019, Credentials

Energy Sector Phish Swims Past Microsoft Email Security via Google Drive

The savvy technique of avoiding malicious links in the email allowed the phishing attack to reach its targets. . Energy Sector Phish Swims Past Microsoft ... Read More

Clickjacking Evolves to Hook Millions of Visitors to Top Sites
ad fraud, Black Hat 2019

Clickjacking Evolves to Hook Millions of Visitors to Top Sites

Researchers said that clickjacking is a threat that's evolving, with new tactics just starting to emerge. . Clickjacking Evolves to Hook Millions of Visitors to ... Read More

20-Year-Old Bug in Legacy Microsoft Code Plagues All Windows Users
Black Hat 2019, CTF

20-Year-Old Bug in Legacy Microsoft Code Plagues All Windows Users

A bug in an obscure legacy Windows protocol can lead to serious real-world privilege-escalation attacks. . 20-Year-Old Bug in Legacy Microsoft Code Plagues All Windows ... Read More

Patch time! Microsoft warns of new worm-ready RDP bugs
CVEs, Microsoft

Patch time! Microsoft warns of new worm-ready RDP bugs

Microsoft's Patch Tuesday bought some bad news yesterday: more wormable RDP vulnerabilities, this time affecting Windows 10 users. . Patch time! Microsoft warns of new ... Read More

Shades of BlueKeep: Wormable Remote Desktop Bugs Top August Patch Tuesday List
august patch tuesday, Black Hat 2019

Shades of BlueKeep: Wormable Remote Desktop Bugs Top August Patch Tuesday List

The flaws allow remote code-execution without user interaction or authentication, and are highly exploitable. . Shades of BlueKeep: Wormable Remote Desktop Bugs Top August Patch ... Read More

LLMNR Poisoning and WPAD Spoofing
active-dicrectory, BugBountywriteup

LLMNR Poisoning and WPAD Spoofing

I recently started an internship at as a Pentesting intern. Before starting, I knew that Active Directory would be a huge target, but did not ... Read More