[BleepingComputer] Microsoft fixes Windows Hello authentication bypass vulnerability

Microsoft has addressed a security feature bypass vulnerability in the Windows Hello authentication biometrics-based tech, letting threat actors spoof a target’s identity and trick the face recognition mechanism into giving them access to the system. […]

Source: Read More (BleepingComputer)

You might be interested in …

[ZDNet] Cybercriminals threaten to hack EU hospitals in latest COVID-19 vaccine scam

All posts, ZDNet

Cybercriminals are demanding people’s personal information and claiming to have the ability to falsify vaccination records at hospitals across the European Union. Source: Read More (Latest topics for ZDNet in Security)

Read More

[SANS ISC] JavaScript Downloader Delivers Agent Tesla Trojan, (Thu, Nov 18th)

All posts, Sans-ISC

Yesterday I spotted a piece of JavaScript script that delivers Agent Tesla[1]. New waves of this information stealer trojan are regularly spread to victims. PE files are delivered through downloader scripts attached to phishing emails. Those scripts are regularly updated and the one I found yesterday was interesting. The file was delivered as a 7z […]

Read More

[HackerNews] BadAlloc Flaw Affects BlackBerry QNX Used in Millions of Cars and Medical Devices

All posts, HackerNews

A major vulnerability affecting older versions of BlackBerry’s QNX Real-Time Operating System (RTOS) could allow malicious actors to cripple and gain control of a variety of products, including cars, medical, and industrial equipment. The shortcoming (CVE-2021-22156, CVSS score: 9.0) is part of a broader collection of flaws, collectively dubbed BadAlloc, that was originally disclosed by Source: […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.