Microsoft’s January 2024 Windows Update Patches 48 New Vulnerabilities

Microsoft has addressed a total of 48 security flaws spanning its software as part of its Patch Tuesday updates for January 2024.
Of the 48 bugs, two are rated Critical and 46 are rated Important in severity. There is no evidence that any of the issues are publicly known or under active attack at the time of release, making it the second consecutive Patch Tuesday with no zero-days.
The

The Hacker News – ​Read More

SEC Chair Says Account on X Was Hacked

The SEC said that a post on X, announcing that the securities regulator had approved the trading of exchange-traded funds holding bitcoin was fake, and that the agency’s account had been “compromised.”

The post SEC Chair Says Account on X Was Hacked appeared first on SecurityWeek.

SecurityWeek – ​Read More

The SEC’s Official X Account Was ‘Compromised’ and Used to Post Fake Bitcoin News

The US financial regulator says its official @SECGov account was “compromised,” resulting in an “unauthorized” post about the status of Bitcoin ETFs.

Security Latest – ​Read More

Path Traversal Bug Besets Popular Kyocera Office Printers

A printer bug could lead to much worse, in IT networks without proper segmentation.

darkreading – ​Read More

Patch Now: Critical Windows Kerberos Bug Bypasses Microsoft Security

A second, easy-to-exploit critical security vulnerability in Microsoft’s first 2024 Patch Tuesday allows RCE within Hyper-Virtualization.

darkreading – ​Read More

Ukraine Claims Revenge Hack Against Moscow Internet Provider

Reports say M9 Telecom servers were destroyed in retaliation for Russia-backed cyberattack against Kyivstar mobile phone operator.

darkreading – ​Read More

Hospitality Hackers Target Hotels’ Booking.com Logins

Cyberattackers are checking into the accounts of Booking.com’s hotel partners, hoping to steal their visitor data.

darkreading – ​Read More

Indian ISP Hathway Data Breach: Hacker Leaks 4 Million Users, KYC Data

By Waqas

While Hathway hasn’t commented yet, analysis of the leaked data by Hackread.com suggests the breach may be authentic and could have serious consequences for affected individuals.

This is a post from HackRead.com Read the original post: Indian ISP Hathway Data Breach: Hacker Leaks 4 Million Users, KYC Data

Hackread – Latest Cybersecurity News, Press Releases & Technology Today – ​Read More

Microsoft Ships Urgent Fixes for Critical Flaws in Windows Kerberos, Hyper-V

Patch Tuesday: Redmond patches critical, remote code execution vulnerabilities haunting Windows Kerberos and Windows Hyper-V.

The post Microsoft Ships Urgent Fixes for Critical Flaws in Windows Kerberos, Hyper-V appeared first on SecurityWeek.

SecurityWeek – ​Read More

Delinea Acquires Authomize to Tackle Identity-Based Threats

Delinea acquires Israeli startup Authomize to add identity threat detection and response (IDTR) technologies to its product portfolio.

The post Delinea Acquires Authomize to Tackle Identity-Based Threats appeared first on SecurityWeek.

SecurityWeek – ​Read More