Cybersecurity
The latest Cybersecurity coverage — news, analysis, and updates from the WindowsNews.AI desk.
Surging FastHTTP attacks exploit MFA fatigue to breach Microsoft 365 accounts
Microsoft 365 accounts are increasingly targeted by sophisticated FastHTTP cyber attacks, putting enterprise data at risk through credential stuffing and MFA fatigue tactics. These attacks leverage...
Patch SimpleHelp now: critical RCE bugs allow full network takeover in versions before 6.4.0
Windows administrators and IT professionals relying on SimpleHelp for remote support must take immediate action following the discovery of critical vulnerabilities in the popular remote access...
Star Blizzard's Latest Cyberattack: Spear-Phishing on WhatsApp and How Windows Users Can Stay Protected
The cybersecurity landscape has witnessed a new wave of sophisticated attacks, with the notorious hacking group Star Blizzard launching a spear-phishing campaign targeting WhatsApp users. This latest...
CISA: Close the Windows Software Understanding Gap or Face Growing Cyber Threats
The cybersecurity landscape is evolving rapidly, and Windows users face an increasing threat from what experts call the 'software understanding gap' - the dangerous disconnect between how software is...
Patch Aviatrix Now: CISA Flags Critical CVE-2024-50603 Command Injection Flaw
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding CVE-2024-50603, a critical command injection vulnerability affecting Aviatrix controllers. This flaw...
Siemens Mendix LDAP Vulnerability: Critical Security Alert and Patch Guidance
Siemens has issued an urgent security advisory regarding a critical LDAP injection vulnerability in its Mendix platform that could allow attackers to bypass authentication mechanisms. The...
Patch now: Critical RCE flaws hit Schneider EcoStruxure IT products.
Schneider Electric Vulnerabilities: Urgent Advisory for EcoStruxure™ IT Users Schneider Electric has issued an urgent security advisory for users of its EcoStruxure™ IT products, warning of...
New Cybersecurity Alert: Critical Vulnerability in Hitachi Energy ICS Products (CVE-2024-2462)
A newly discovered vulnerability in Hitachi Energy's industrial control systems (ICS) has raised significant cybersecurity concerns across critical infrastructure sectors. The flaw, tracked as...
Siemens IEM-OS XSS Flaw: Critical Patch Urged for CVE-2024-45385
Siemens IEM-OS Vulnerability: Critical Cybersecurity Alert Explaining CVE-2024-45385 A critical vulnerability has been discovered in Siemens' Industrial Edge Management Operating System (IEM-OS),...
Siemens patches critical 9.8-rated CVE-2024-53649 flaw in SIPROTEC 5 relays
A newly disclosed critical vulnerability in Siemens SIPROTEC 5 devices (CVE-2024-53649) poses significant risks to industrial control systems, with potential for remote code execution and...
Siemens Siveillance Video Bug Lets Hackers Steal Logs—Update Now
A critical vulnerability (CVE-2024-12569) has been discovered in Siemens Siveillance Video surveillance systems, exposing security cameras to potential cyberattacks. This flaw could allow attackers...
CISA Warns: 12 Critical ICS Flaws Threaten Windows Industrial Systems
The Cybersecurity and Infrastructure Security Agency (CISA) recently issued 12 critical advisories concerning Industrial Control Systems (ICS), many of which directly impact Windows users in...