Microsoft’s September 2023 Patch Tuesday is another important one. Not because it’s a busy one, but because we have some special…
Tag: Azure
Microsoft Azure AD flaw can lead to account takeover
Researchers have found that a flaw in Microsoft Azure AD can be used by attackers to take over accounts that rely…
Super FabriXss: an RCE vulnerability in Azure Service Fabric Explorer
Researchers at Orca Security disclosed how they found a remote code execution vulnerability in Azure Service Fabric Explorer. The vulnerability was reported…
“BingBang” flaw enabled altering of Bing search results, account takeover
Researchers from Wiz have discovered a way to allow for search engine manipulation and account takeover. The research in question focuses…
Update now! Microsoft releases patches, including one for actively exploited zero-day
Microsoft has released patches for 74 security problems, including fixes for seven “critical” vulnerabilities, and an actively exploited zero-day vulnerability that affects…
Azure AutoWarp brings automation headaches
Azure is Microsoft’s cloud computing service providing a wide range of features for businesses worldwide. It’s particularly popular for its virtual…
Emotet being spread via malicious Windows App Installer packages
As reported by Cryptolaemus on Twitter, and demonstrated step by step by BleepingComputer, Emotet is now being distributed through malicious Windows…
[updated] Patch now! PrintNightmare over, MSHTML fixed, a new horror appears … OMIGOD
The September 2021 Patch Tuesday could be remembered as the final patching attempt in the PrintNightmare… nightmare. The ease with which…
A week in security (June 24 – 30)
Last week on Malwarebytes Labs, we peeled back the mystery on an elusive malware campaign that relied on blank JavaScript injections,…