Microsoft Office

Critical vulnerability in Microsoft Word and Windows Search allows malware to be downloaded to millions of devices

On: June 3, 2022

Tagged: cybersecurity, hackers, Hacking, incidents, Information Security, malicious scripts, Microsoft, Microsoft Office, Microsoft Word, phishing, remote code execution (RCE), technology, vulnerability, Windows Search

Threat actors could exploit a critical zero-day vulnerability in Windows Search to run remotely hosted malware just by automatically opening a search window with a Word document. According to theRead More →

Microsoft confirms that Follina, Office’s zero-day vulnerability, is being exploited by threat actors

On: May 31, 2022

In: Vulnerabilities

Tagged: Common Vulnerability Scoring System (CVSS), Cyberattack, cybercrime, cybersecurity, Follina, Hacking, Information Security, Microsoft, Microsoft Office, Microsoft Word, security flaws, VirusTotal, vulnerability, Windows, Zero-day vulnerability

After a researcher detected a specially crafted Word file to run arbitrary PowerShell on Windows systems, Microsoft confirmed that its operating system is affected by a zero-day vulnerability tracked asRead More →

How cybercriminals are exploiting Microsoft regsvr32 utility with Squiblydoo technique to hack into enterprise networks

On: February 10, 2022

In: Cyber Security

Tagged: Cyberattack, cybercrime, cybersecurity, hackers, Hacking, Information Security, Lokibot, malware, Microsoft Office, Qbot, Regsvr32, Squiblydoo, Windows

Researchers from the security firm Uptycs report the detection of an increase in the abuse of regsvr32.exe through various Microsoft Office documents. According to the report, malware variants such asRead More →

How WeTransfer phishing attacks work?

On: August 3, 2021

In: Cyber Security

Tagged: Armblox, Cyberattack, cybersecurity, Hacking, Microsoft Excel, Microsoft Office, Office 365, phishing, web hosting, WeTransfer

A report by cybersecurity firm Armblox notes that a hacking group is using the image of the WeTransfer hosting system and Microsoft Excel to deploy ambitious phishing campaigns in orderRead More →

Remote code execution vulnerability in Microsoft Excel allows hackers to take control of your network. 4 critical vulnerabilities in legacy Office. Patch now

On: June 9, 2021

In: Vulnerabilities

Tagged: Common Vulnerability Scoring System (CVSS), Cyberattack, cybersecurity, Hacking, Microsoft, Microsoft Excel, Microsoft Office, Microsoft Word, remote code execution (RCE), vulnerability

Check Point cybersecurity specialists reported the discovery of four vulnerabilities in Microsoft Office that could be exploited for the creation of malicious documents in Word and Excel, which would facilitateRead More →

How Microsoft Office renewal scam is stealing money from thousands around the world

On: August 6, 2020

In: Cyber Security

Tagged: Cyberattack, cybersecurity, Hacking, Microsoft Office, phishing

A team of cybersecurity specialists from the firm Abnormal Security has detected a malicious campaign in which threat actors try to trick users with an alleged renewal of Microsoft Office;Read More →

How hackers are exploiting Microsoft’s Equation Editor function of Microsoft to spread ransomware in Office

On: July 1, 2020

In: Vulnerabilities

Tagged: cybersecurity, Hacking, Microsoft Office, vulnerability

A group of cybersecurity specialists has revealed the detection of multiple attacks related to the exploitation of an old Microsoft Office flaw (tracked as CVE-2017-11182). This flaw, patched in 2017,Read More →

Microsoft Office

Critical vulnerability in Microsoft Word and Windows Search allows malware to be downloaded to millions of devices

Microsoft confirms that Follina, Office’s zero-day vulnerability, is being exploited by threat actors

How cybercriminals are exploiting Microsoft regsvr32 utility with Squiblydoo technique to hack into enterprise networks

How WeTransfer phishing attacks work?

Remote code execution vulnerability in Microsoft Excel allows hackers to take control of your network. 4 critical vulnerabilities in legacy Office. Patch now

How Microsoft Office renewal scam is stealing money from thousands around the world

How hackers are exploiting Microsoft’s Equation Editor function of Microsoft to spread ransomware in Office

Critical Vulnerabilities in Cisco ASA & FTD Exposed! Learn How to Exploit CVE-2024-20353 and CVE-2024-20359

Dual Vulnerabilities in Microsoft SharePoint Server: Essential Steps to Mitigate Vulnerabilities

Exploiting the High-Risk Vulnerabilities in Secure Boot of Most Linux Devices on the Planet

Hackers’ New Target is containerized environments through vulnerabilities in runC

Hacking Android, Linux, macOS, iOS, Windows Devices via Bluetooth using a single vulnerability

110 Million AT&T Customers’ Data leaked: Inside the $370,000 Ransom Payment

How Hackers Stole Taylor Swift Tickets: The Full Ticketmaster Breach Story

Dark Web Sale: AMD’s Confidential Data Leaked – Full Story Revealed!

How Snowflake Hack is Linked to Santander(Spain, Chile, Uruguay) and Ticketmaster Breaches.Are You Affected?

Healthcare Hack Horror: Cyberattacks Leave French Hospitals in Chaos for $10 Million

Hacking the Unhackable: The Story of How CISA Was Breached

The Cloudflare Hack: A Hacker, 5000 Credentials, and Operation Code Red

Comparing CIS v8, CIS AWS Foundations Benchmark v1.5, and PCI DSS v4.0 for CSPM. Which you Should Start With?

MITRE EMB3D Explained: Top Threats to Embedded Devices and How EMB3D Mitigates Them

Google Gemini Under Fire: Critical Security Vulnerabilities You Need to Know to hack Gemini

Cracking SCCM Wide Open: Pentesting System Center Configuration Manager with Misconfiguration Manager

Hacking Windows 10 and 11 with DLL Search Order Hijacking without administrator rights

Hacking SSH Connections by exploiting SSH Protocol Vulnerabilities: Different Terrapin Attack Vectors

Understanding Latest DHCP DNS Vulnerabilities and How DHCP Exploits work in Active Directory

Hacking Bluetooth via MiTM: The BLUFFS Bluetooth attack to hack into Millions of Devices

6 Steps to File Anonymous SEC Complaints Against Data Breachers & Force Them to Pay Fines or Take Action

Inside the Exploit: How Your ChatGPT’s Uploaded Files Could Be Stolen by Prompt Injection Vulnerability

This Google Calendar technique allows to hack into companies without getting detected

This telegram bot is like ChatGPT for scammers to steal money from victims easily

How easy is to bomb someone mobile phone with thousands of SMS messages?

This new DDoS attack prevention technique has a 99% accuracy rate

How to secure Cisco Firepower Threat Defense (FTD) firewalls ?

The Dark Side of PDFs: How Opening a Simple PDF Could Unleash a Cybersecurity Nightmare

Largest soft drink bottle supplier, recycle and plastic manufacturers hacked by ransomware

Visited thesaurus.com in search for Synonyms? You have Coinminer malware infection

How to send malware via Teams, even “Safe Attachments” or “Safe Links” can’t protect you

2 Big Cloud hosting companies shutdown by ransomware and lose all customer data