News

Hackers steal Microsoft logins using legitimate ADFS redirects

Hackers are using a novel technique that combines legitimate office.com links with Active Directory Federation Services (ADFS ...

Major password managers can leak logins in clickjacking attacks

Six major password managers with tens of millions of users are currently vulnerable to unpatched clickjacking flaws that ...

Microsoft reportedly fixing SSD failures caused by Windows updates

Recently released Windows 11 24H2 updates are reportedly causing data corruption and failure issues for some SSD and HDD ...

Elastic rejects claims of a zero-day RCE flaw in Defend EDR

Enterprise search and security company Elastic is rejecting reports of a zero-day vulnerability impacting its Defend endpoint ...

Microsoft releases emergency updates to fix Windows recovery

Microsoft has released emergency Windows out-of-band updates to resolve a known issue breaking reset and recovery operations ...

Microsoft shares workaround for Teams "couldn't connect" error

Microsoft is resolving a known issue that causes "couldn't connect" errors when launching the Microsoft Teams desktop and web ...

Microsoft investigates outage impacting Copilot, Office.com

Microsoft is investigating an ongoing issue preventing users across North America from accessing Office.com and the company's Copilot AI-powered assistant.

PyPI now blocks domain resurrection attacks used for hijacking accounts

The Python Package Index (PyPI) has introduced new protections against domain resurrection attacks that enable hijacking ...

Okta open-sources catalog of Auth0 rules for threat detection

Okta has open-sourced ready-made Sigma-based queries for Auth0 customers to detect account takeovers, misconfigurations, and ...

Microsoft fixes Windows upgrades failing with 0x8007007F error

Microsoft has resolved a known issue that caused Windows upgrades to fail with 0x8007007F errors on some Windows 11 and Windows Server systems.