Researchers from cyber attack detection and response outfit Cybereason have discovered a novel APT technique that was used by attackers to gain persistence in an (unnamed) organization' environment and to harvest employees' authentication credentials.
The need for corporate security has never been greater.
As Windows 10 was being prepared for release, Microsoft presented many new security features (and we've written about some) to be included in the new version of the popular OS.
Among the vulnerabilities patched earlier this month by Microsoft is an important one that endangers users of Microsoft SharePoint 2013, a web application platform in the Microsoft Office server suite that combines a variety capabilities (intranet, extranet, content management, document management, personal cloud, and so on.) CVE-2015-2522 is a persistent cross-site scripting vulnerability that can be exploited by remote attackers, allowing them to do a lot of damage.
Microsoft released twelve patches fixing over 50 vulnerabilities in Internet Explorer, Microsoft Edge, Active Directory Service, Microsoft Graphics Component, Windows Journal, Microsoft Office, Windows Media Center, .NET Framework, Windows Task Management, Microsoft Exchange Server, Skype for Business Server and Lync Server, and Windows Hyper-V.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.