Microsoft blocks Windows 11 24H2 on two ASUS models due to crashes

October 21, 2024 at 12:56PM Microsoft has issued a warning about potential crashes, specifically the blue screen of death, affecting certain ASUS laptop models during the upgrade to Windows 11 version 24H2. Users of these devices should take caution before proceeding with the update. **Meeting Takeaways:** 1. **Issue Identified**: Microsoft has reported a problem with … Read more

Dangerous AI Workaround: ‘Skeleton Key’ Unlocks Malicious Content

June 26, 2024 at 05:26PM A new direct prompt injection attack called “Skeleton Key” bypasses ethical and safety guardrails in generative AI like ChatGPT, allowing access to offensive or illegal content. Microsoft found that by providing context and disclaimers, most AIs can be convinced malicious requests are for “research purposes.” Microsoft has fixed the issue … Read more

Microsoft Warns of ‘Dirty Stream’ Vulnerability in Popular Android Apps

May 3, 2024 at 07:27AM Microsoft has issued a warning about the Dirty Stream attack method, which affects Android applications and allows threat actors to take control and gather sensitive data. The vulnerability impacts popular apps like Xiaomi File Manager and WPS Office, potentially affecting over 1.5 billion installs. Microsoft has alerted developers and urged … Read more

Microsoft: APT28 hackers exploit Windows flaw reported by NSA

April 22, 2024 at 06:34PM Microsoft warned that the Russian APT28 threat group exploits a Windows Print Spooler vulnerability using a new hacking tool called GooseEgg. APT28 has used GooseEgg since June 2020, potentially earlier, to launch malicious payloads, escalate privileges, and attack government and non-governmental organizations. APT28 has a history of high-profile cyber attacks. … Read more

Iranian Hackers Targeting US Defense Industrial Base Entities With New Backdoor

December 22, 2023 at 07:45AM Microsoft has raised an alert on Iranian state-sponsored attacks targeting US defense industrial base (DIB) organizations. The attacks, attributed to Peach Sandstorm, a group also known as APT33, are believed to have been active since at least 2013. A newly developed backdoor named FalseFont has been observed, allowing remote access … Read more