Microsoft Releases Patch for New Windows Zero-Day; But No Patch for Exchange Server Bugs

The Hacker News Daily Updates 5G Security Use Case: Deep Core Packet Inspection Mitigating DDoS attacks requires understanding the impact on your network. This case study provides insight and recommendations for testing and minimizing the impact of attacks. Download Now Sponsored LATEST NEWS Oct 12, 2022 64,000 Additional Patients Impacted by Omnicell Data Breach - What is Your Data Breach Action Plan? In April 2022, Omnicell reported a data breach affecting nearly 62,000 patients. The company has revealed that the incident has impacted an additional 64,000 individuals. This brings the total number of patients affected to over 126,000.  Will you be the next victim like Omnicell? If you are ... Read More Critical Bug in Siemens SIMATIC PLCs Could Let Attackers Steal Cryptographic Keys A vulnerability in Siemens Simatic programmable logic controller (PLC) can be exploited to retrieve the hard-coded, global private cryptographic keys and seize control of the devices. "An attacker can use these keys to perform multiple advanced attacks against Siemens SIMATIC devices and the ... Read More Microsoft Patch Tuesday Fixes New Windows Zero-Day; No Patch for Exchange Server Bugs Microsoft's Patch Tuesday update for the month of October has addressed a total of 85 security vulnerabilities, including fixes for an actively exploited zero-day flaw in the wild. Of the 85 bugs, 15 are rated Critical, 69 are rated Important, and one is rated Moderate in severity. The update, ... Read More BazarCall Call Back Phishing Attacks Constantly Evolving Its Social Engineering Tactics The operators behind the BazaCall call back phishing method have continued to evolve with updated social engineering tactics to deploy malware on targeted networks. The scheme eventually acts as an entry point to conduct financial fraud or facilitate the delivery of next-stage payloads such as ... Read More Researchers Detail Critical RCE Flaw Reported in Popular vm2 JavaScript Sandbox A now-patched security flaw in the vm2 JavaScript sandbox module could be abused by a remote adversary to break out of security barriers and perform arbitrary operations on the underlying machine. "A threat actor can bypass the sandbox protections to gain remote code execution rights on the host ... Read More 5G Security Use Case: Deep Core Packet Inspection Mitigating DDoS attacks requires understanding the impact on your network. This case study provides insight and recommendations for testing and minimizing the impact of attacks. Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India