The Information Highway

The Information Highway

Active exploitation of Microsoft vulnerability

Threat-Advisory-Banner

Threat update

Microsoft announced that a recently disclosed security flaw had been exploited just one day after it released fixes for the vulnerability. CVE-2024-21410, an Exchange Server vulnerability, with a CVSS score of 9.8, allows threat actors to escalate privileges of the affected Exchange Server.

Continue reading
  684 Hits

New GoFetch attack on Apple Silicon CPUs can steal crypto keys

apple-cp_20240323-180023_1

A new side-channel attack called "GoFetch" impacts Apple M1, M2, and M3 processors and can be used to steal secret cryptographic keys from data in the CPU's cache.

Continue reading
  666 Hits

Windows 11 Notepad finally gets spellcheck and autocorrect

windows-11-gradient-header

Microsoft continues to add new features to the Windows Notepad, today announcing a preview release with built-in spellchecking and an autocorrect feature.

Continue reading
  675 Hits

Evasive Sign1 malware campaign infects 39,000 WordPress sites

back-2

A previously unknown malware campaign called Sign1 has infected over 39,000 websites over the past six months, causing visitors to see unwanted redirects and popup ads.

Continue reading
  555 Hits

Exploit released for Fortinet RCE bug used in attacks, patch now

Fortinet

Security researchers have released a proof-of-concept (PoC) exploit for a critical vulnerability in Fortinet's FortiClient Enterprise Management Server (EMS) software, which is now actively exploited in attacks.

Continue reading
  902 Hits

Top Breaches Of 2023

Customers Affected In T-Mobile Breach
Accounts Affected In MOVEit Breach
Customers Affected In MCNA Insurance Data Breach
Individuals Affected In PharMerica Data Breach
Users Affected In ChatGPT Major Data Breach
*Founder Shield End of Year 2023