September 10, 2024 at 02:15PM Microsoft has resolved a zero-day exploit in Windows Smart App Control and SmartScreen, labeled as CVE-2024-38217, that threat actors have been exploiting since at least 2018. The vulnerability allowed them to bypass security features and launch untrusted files. Elastic Security Labs has detected and reported the flaw, and Microsoft is … Read more
August 6, 2024 at 05:18PM A study by Elastic Security reveals that reputation-based security controls are less effective at safeguarding organizations against unsafe web applications and content than commonly believed. Attackers have developed techniques like reputation hijacking, reputation seeding, and maliciously signed malware tools to bypass these mechanisms. The study recommends using behavior analysis tools … Read more
August 5, 2024 at 03:56PM Design flaw in Windows Smart App Control and SmartScreen allows attackers to run programs without security warnings since 2018. As the executive assistant, I will diligently and accurately generate clear takeaways from the meeting notes. It appears that a design flaw in Windows Smart App Control and SmartScreen has been … Read more
August 5, 2024 at 09:18AM Cybersecurity researchers have identified design weaknesses in Microsoft’s Windows Smart App Control and SmartScreen, potentially allowing threat actors to gain access without triggering warnings. These vulnerabilities include bypassing protections with a legitimate EV certificate, reputation hijacking, seeding, tampering, and LNK stomping. This underscores the need for additional scrutiny in download … Read more
May 21, 2024 at 06:09AM Microsoft is implementing new security measures for Windows 11, including deprecating NT LAN Manager (NTLM) in favor of Kerberos for authentication. Other changes involve enhancing user authentication, securing Windows Hello with virtualization-based security, and implementing Smart App Control with AI capabilities. These measures aim to strengthen overall security and counter … Read more