Microsoft Patch Tuesday Year 2024 Analysis
Posted inYear 2024

Microsoft Patch Tuesday Year 2024 Analysis

In 2024, Microsoft's Patch Tuesday updates played a critical role in addressing security vulnerabilities across various platforms. Throughout the year, a total of 1,000+ vulnerabilities were patched, including multiple critical…
RedAlert Rocket Alerts App Spoofed

RedAlert Rocket Alerts App Spoofed

In a wake of Isreal-Hamas ongoing conflict, researchers have spotted an legitimate app was malvertised and it collects user data silently. An official app goes by the name RedAlert -…
Microsoft Patch Release Review – Year 2022

Microsoft Patch Release Review – Year 2022

This post summarizes the microsoft patch release for the year 2022 SEVERITY WISE BREAKUP SeverityDefense in DepthDenial of ServiceElevation of PrivilegeInformation DisclosureRemote Code ExecutionSecurity Feature BypassSpoofingTamperingUnknownGrand TotalCritical 115 72 1  89Important16937411323739223 856Low 11 1    3Moderate 12 3131 11None1        1Unknown        156156Grand Total272392113312402641561112 IMPACT WISE…
Vanity URL – Phishing

Vanity URL – Phishing

Researchers revealed a method to validate subdomains failure within so-called vanity URLs by Box, Zoom, and Google Docs creating a powerful way to enhance their phishing campaigns Vanity URLs can…
Microsoft Defender for Endpoint Spoofing

Microsoft Defender for Endpoint Spoofing

Microsoft has flagged a spoofing vulnerability found in Microsoft Defender for Endpoint that allows attackers to spoof information between clients and the service. The vulnerability, CVE-2022-23278, impacts all of the…
Skype Spoofing Vulnerability
Posted inMobileApps

Skype Spoofing Vulnerability

Several purported security flaws in Skype have been disclosed publicly, but Microsoft claims they do not need “immediate security servicing”. The researcher first began examining Skype in the second week…