November 22, 2023 at 09:06AM Sam Altman, the ousted leader of OpenAI, will be returning to the company as CEO with a new board. The board will be led by Bret Taylor, former co-CEO of Salesforce, and will also include Larry Summers, former U.S. Treasury Secretary, and Adam D’Angelo, Quora CEO. Altman’s removal and subsequent … Read more
November 22, 2023 at 06:02AM Microsoft’s bug bounty program, which pays out rewards to security researchers who discover vulnerabilities, has awarded a total of $63 million over the past decade. The program has experienced explosive growth since 2018, with Microsoft doubling the number of bounty reports, program participants, and awards. Despite this, bug bounty platforms … Read more
November 21, 2023 at 07:03AM Microsoft has paid out $63 million in rewards to security researchers participating in its bug bounty programs. The company now runs 17 bug bounty programs, with rewards reaching up to $250,000 for high-impact bugs. Thousands of researchers from 70 countries are involved, including students, academics, and cybersecurity professionals. Microsoft states … Read more
November 20, 2023 at 09:33AM Microsoft has hired Sam Altman and Greg Brockman, two key figures from OpenAI, to lead its new advanced AI research team. Altman’s firing from OpenAI caused tension within the company, leading new CEO Emmett Shear to promise an investigation. Despite the rift, both Shear and Microsoft CEO Satya Nadella remain … Read more
November 17, 2023 at 08:09AM The US cybersecurity agency CISA has added vulnerabilities from Sophos, Oracle, and Microsoft to its Known Exploited Vulnerabilities (KEV) catalog. The Sophos flaw, CVE-2023-1671, has been exploited in attacks and allows for arbitrary code execution. There have been reports of Chinese threat actors exploiting Sophos vulnerabilities. CISA’s KEV list also … Read more
November 16, 2023 at 10:22AM DDoS attacks have been increasing, particularly targeting major cloud platforms like Microsoft. These attacks aim to disrupt online services by overwhelming them with excessive traffic. The recent attacks on Microsoft employed Layer 7 DDoS attacks, which can cause significant damage with fewer resources. Anonymous Sudan, a cyber threat group, was … Read more
November 15, 2023 at 01:15AM Microsoft has released patches to address 63 security bugs, including three actively exploited vulnerabilities. The flaws are rated as Critical, Important, and Moderate in severity. Five zero-day vulnerabilities are identified, including issues with Windows SmartScreen and ASP.NET Core. The U.S. Cybersecurity and Infrastructure Security Agency has issued a warning and … Read more
November 14, 2023 at 07:42PM Microsoft’s November Patch Tuesday fixes around 60 vulnerabilities, including three that have already been exploited. These include privilege-escalation vulnerabilities in Windows Desktop Manager and Windows Cloud Files Mini Filter Driver, as well as a security feature bypass flaw in Windows Defender SmartScreen. Additionally, Adobe patched 76 vulnerabilities across its products, … Read more
November 14, 2023 at 03:45PM Microsoft released patches for 59 security vulnerabilities, including two zero-days being exploited in the wild. The vulnerabilities in Windows OS and components could allow attackers to gain SYSTEM privileges. Microsoft’s bulletins did not provide details on the live attacks. Adobe also released patches for 72 security bugs, including code-execution defects … Read more
November 9, 2023 at 05:30AM SysAid IT service management software has been targeted by a zero-day vulnerability used by a ransomware operation. Microsoft’s threat intelligence team discovered the exploitation and alerted SysAid, who released a patch on November 8. The vulnerability enables arbitrary code execution and was used by the group Lace Tempest, also linked … Read more