May 20, 2024 at 07:14PM The Open Source Security Foundation (OpenSSF) launches OpenSSF Siren, aiming to share threat intelligence and fill the gap between open-source and enterprise communities. It seeks to provide real-time security warnings, community-driven knowledge base, and encourage sign-ups from FOSS developers and security teams. The initiative focuses on sharing attack tactics and … Read more
February 5, 2024 at 05:07PM Microsoft is investigating an issue where Outlook triggers security alerts when opening .ICS calendar files post-December 2023 Patch Tuesday Office updates. Users are affected by warning dialog boxes, and the company is working on a fix for this bug and related security warning due to CVE-2023-35636. A temporary registry key … Read more
February 1, 2024 at 12:15PM CERT-UA warns of the PurpleFox malware infecting over 2,000 Ukrainian computers with potential backdoor, DDoS, and downloader capabilities. It utilizes a rootkit to persist and conceal its presence. CERT-UA provides methods to detect and remove the malware, including checking network connections, registry values, event logs, and specific file locations, and … Read more