+44 (0)203 88 020 88

Menu

Search

News

Final Windows 7 Patches and critical security bug fixed

The last ever Windows 7 Patch Tuesday update also includes a fix to a long standing bug in the Windows cryptographic library (CryptoAPI) which could allow attackers to spoof digital certificates and conduct man-in-the-middle attacks. Microsoft has long warned that January 2020 was the end of support for Windows 7, meaning that this is expected […]

Final Windows 7 Patches and critical security bug fixed Read More »

SQLite remote code execution vulnerability

A remote code execution vulnerability has been discovered in SQLite, dubbed Magellan 2.0 by the research team that discovered it. Tencent’s Blade security research team has published some details of a remote code execution vulnerability that affects all version of SQLite prior to the latest patch issued on 13 December 2019.   SQLite is a widely used

SQLite remote code execution vulnerability Read More »

Citrix users face attack as RCE vulnerability is probed

When Positive Technologies reported a serious flaw in a core element of the Citrix architecture just before Christmas, they predicted up to 80,000 businesses could be at risk. If that vulnerability is exploited, attackers obtain direct access to the company’s local network from the Internet. This attack does not require access to any accounts, and therefore

Citrix users face attack as RCE vulnerability is probed Read More »

Oauth attack against Office365

A novel attack vector has been seen in the wild: using OAuth permissions to compromise Office365 Accounts Reported by anti-phishing security firm PhishLabs, the new attack leverages the persistent permissions of OAuth authentication to get access to the target Office365 accounts without ever compromising the login credentials. The attack starts with a phishing email which

Oauth attack against Office365 Read More »

0

No products in the basket.

No products in the basket.