[SecurityWeek] Windows URI Handling Flaw Leads to Drive-by Code Execution

A pair of German security researchers have publicly documented the discovery of a drive-by code execution vulnerability in Windows 10 and criticized Microsoft for botching its response to the still-unfixed security problem.

read more

Source: Read More (SecurityWeek RSS Feed)

You might be interested in …

[ZDNet] Ransomware: How the NHS learned the lessons of WannaCry to protect hospitals from attack

All posts, ZDNet

The UK’s National Health Service was a major victim of the WannaCry ransomware attack – but now a focus on patching and backups aims to stop hospitals being disrupted again. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ThreatPost] Apple Issues Urgent iPhone Updates; None for Pegasus Zero-Day

All posts, ThreatPost

Update now: The ream of bugs includes some remotely exploitable code execution flaws. Still to come: a fix for what makes iPhones easy prey for Pegasus spyware. Source: Read More (Threatpost)

Read More

[ThreatPost] Lazarus Attackers Turn to the IT Supply Chain

All posts, ThreatPost

Kaspersky researchers saw The North Korean state APT use a new variant of the BlindingCan RAT to breach a Latvian IT vendor and then a South Korean think tank. Source: Read More (Threatpost)

Read More