August 19, 2024 at 05:32PM Microsoft apps for macOS have been found vulnerable to library injection attacks, enabling malicious actions without user interaction. Researchers at Cisco Talos identified that these apps, including Outlook, Teams, PowerPoint, and more, disable library validation, allowing attackers to gain unauthorized access. Despite being alerted, Microsoft has categorized the issue as … Read more
August 7, 2024 at 09:28AM Cybercriminals can manipulate Microsoft Outlook’s anti-phishing measure by using CSS to hide the First Contact Safety Tip, making it appear invisible to users, except in the email preview pane. This tactic also allows cybercriminals to add a seemingly legitimate note to phishing emails, posing a security threat despite some formatting … Read more
July 4, 2024 at 06:37AM Microsoft has disclosed two security vulnerabilities in Rockwell Automation PanelView Plus, which could be exploited by remote attackers for remote code execution and denial-of-service (DoS) attacks. These flaws are tracked as CVE-2023-2071 and CVE-2023-29464, impacting FactoryTalk View Machine Edition and FactoryTalk Linx. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) … Read more