One CVE was used against “a small number of targets.” Windows 10 users needed to wait a little bit for their patches.
Category: Microsoft Office
ClickFix, Exploits, Facebook, Global Security News, Google Chrome, Microsoft Office, mshta.exe, Other, proofpoint, U.S. Department of Health and Human Services
ClickFix: How to Infect Your PC in Three Easy Steps
A clever malware deployment scheme first spotted in targeted attacks last year has now gone mainstream. In this scam, dubbed “ClickFix,” the visitor to a hacked or malicious website is asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware. ClickFix attacks mimic the…
Cybersecurity, Exploits, Global Security News, Microsoft, Microsoft Office, remote desktop service, Security, security administration, security patches, Software, windows dns server, windows subsystem for linux
Patch Tuesday: Microsoft Fixes 57 Security Flaws – Including Active Zero-Days
Microsoft’s March 2025 Patch Tuesday includes six actively exploited zero-day vulnerabilities. Learn about the critical vulnerabilities and why immediate updates are essential.
CloudFlare, Cybersecurity, Global Security News, group-1b, Microsoft, Microsoft 365, Microsoft Office, microsoft outlook, phishing, phishing-as-a-service, Security, Sekoia, sneaky 2fa, sneaky log, Social Engineering, Telegram, trac labs, two factor authentication
‘Sneaky Log’ Microsoft Spoofing Scheme Sidesteps Two-Factor Security
The phishing-as-a-service kit from Sneaky Log creates fake authentication pages to farm account information, including two-factor security codes.