CrowdStrike dismissed claims that the Falcon EDR sensor bug could be exploited for privilege escalation or remote code execution.
The post CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug appeared first on SecurityWeek.
Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks
Researcher showcases hack against Microsoft Windows Update architecture, turning fixed vulnerabilities into zero-days.
The post Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks appeared first on SecurityWeek.
Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million
Microsoft is trying to determine “why other airlines were able to fully restore business operations so much faster than Delta.”
The post Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million appeared first on SecurityWeek.
CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash
CrowdStrike says the Falcon sensor crash that blue-screened Windows machines was caused by a “confluence” of vulnerabilities and testing gaps.
The post CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash appeared first on SecurityWeek.
Google Patches Android Zero-Day Exploited in Targeted Attacks
Google has patched CVE-2024-36971, a high-severity kernel zero-day vulnerability in Android that has been exploited in targeted attacks.
The post Google Patches Android Zero-Day Exploited in Targeted Attacks appeared first on SecurityWeek.
New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous
A new Linux kernel exploitation technique named SLUBStick makes heap vulnerabilities more dangerous.
The post New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous appeared first on SecurityWeek.
Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study
The average cost of a data breach jumped to $4.88 million from $4.45 million in 2023, a 10% spike.
The post Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study appeared first on SecurityWeek.
Microsoft Says Azure Outage Caused by DDoS Attack Response
Microsoft’s response to a DDoS attack on Azure amplified the impact of the attack instead of mitigating it, causing outages.
The post Microsoft Says Azure Outage Caused by DDoS Attack Response appeared first on SecurityWeek.
Company Paid Record-Breaking $75 Million to Ransomware Group: Report
Zscaler is aware of a company that paid a record-breaking $75 million ransom to the Dark Angels ransomware group.
The post Company Paid Record-Breaking $75 Million to Ransomware Group: Report appeared first on SecurityWeek.
Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw
Researchers discovered and published details of an XSS attack that could potentially impact millions of websites around the world.
The post Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw appeared first on SecurityWeek.
