Headline NEWS
- Researchers Keep a Wary Eye on Critical New Vulnerability in Apache Commons Text (Text4Shell)
- Vulnerabilities in Cisco Identity Services Engine require your attention
- Heat left by users’ fingertips could help hackers crack passwords
- Microsoft’s out-of-date driver list left Windows PCs open to malware attacks for years
- Windows Mark of the Web bypass zero-day gets unofficial patch
- Critical RCE Vulnerability Discovered in Popular Cobalt Strike Hacking Software
- Zimbra Releases Patch for Actively Exploited Vulnerability in its Collaboration Suite
- Microsoft fixes Windows TLS handshake failures in out-of-band updates
- Microsoft shares fix for Exchange Online mailbox Autodiscover issues in Outlook
- Zoom for Mac patches sneaky “spy-on-me” bug
- Git local installation security vulnerabilities announced
- Microsoft data breach exposes customers’ contact info, emails
- Windows 10 22H2 is released, here’s what we know
- Featured for Cybersecurity month, CISA cybersecurity awareness website
Other News Events of Note and Interest
- Wi-Fi drones were used by hackers to penetrate a financial firm’s network remotely
- Windows 11 22H2 “runs like magic” on 12-year-old unsupported Intel CPU
- Microsoft Places is a new app to keep track of your hybrid team
- INTERPOL-led Operation Takes Down ‘Black Axe’ Cyber Crime Organization
- Security researchers show off the RTX 4090’s password cracking power
- Microsoft Open-Sources its ‘Farm of the Future’ Toolkit
- Venus Ransomware targets publicly exposed Remote Desktop services
- Malware dev claims to sell new BlackLotus Windows UEFI bootkit
- New VESA standard, All DisplayPort 2.0 products are now DisplayPort 2.1
- Phishing works so well criminals won’t bother with deepfakes
- Vinomofo data breach: 500,000 customers at risk after wine dealer hit by cyber-attack
- Black Basta Ransomware Hackers Infiltrates Networks via Qakbot to Deploy Brute Ratel C4
- Microsoft Defender is lacking in offline detection capabilities, says AV-Comparatives
- ‘Fully undetectable’ Windows backdoor gets detected
- The WiFi Coconut is a router’s evil twin
- Verizon notifies prepaid customers their accounts were breached
- Privacy online just got easier with October 18 Firefox release
- Microsoft gives us a first look at the new Microsoft 365 app
- Deadbolt Ransomware Extorts Vendors and Customers
- Hackers compromised Hong Kong govt agency network for a year
- Hackers target Asian casinos in lengthy cyberespionage campaign
- DuckDuckGo for Mac enters public beta, now available to everyone
- Windows 11 22H2 and Nvidia drivers apparently still refusing to play nicely together
- Intel sued over historic DEC chip site’s future
- CISA Warns of Critical Flaws Affecting Industrial Appliances from Advantech and Hitachi
- Microsoft announces enterprise DDoS protection for SMBs
- Russian Newspaper Reports 40% Failure Rate for Chinese Microchips
- The Vice Society Ransomware Gang Thrives in a Crucial Blind Spot
- USB-C can hit 120Gbps with newly published USB4 Version 2.0 spec
- New Ursnif Variant Likely Shifting Focus to Ransomware and Data Theft
- Windows 11’s Moment 1 update is now available for download
- Internet connectivity worldwide impacted by severed fiber cables in France
- Cybercriminals Upping the Ante on Ransomware
- BlackByte ransomware uses new data theft tool for double-extortion
- A 1990s relic, floppy disks get second life at California warehouse
- ScubaGear: Automation to assess the state of your M365 tenant against CISA’s baselines
- Your Microsoft Exchange Server Is a Security Liability
- Microsoft is taking on CCleaner to help your PC in a future Windows 11 update
For a PDF version of this week’s report, click here.