Security Bulletin

Intrusions with Snowblind involved the injection of a seccomp filter to intercept system calls, as well as a SIGSYS signal handler to direct anti-tampering code to unchanged APK versions allowing the deactivation of several app security features.

U.S.-based nonprofit organization Better Business Bureau and skin care provider U.S. Dermatology Partners were admitted to be compromised by the BianLian ransomware operation.

Attacks aimed at up to 30 organizations in Europe and the Americas, particularly the U.S. manufacturing industry, have been linked to Chinese hacking group APT41 and North Korean state-backed advanced persistent threat operation Andariel

Only U.S banking-as-a-service provider Evolve Bank & Trust was noted by cyber threat monitoring firm HackManac to have been impacted by an attack claimed by the LockBit ransomware operation to have resulted in the compromise of 33 TB of files from...

Here are four shortcomings of MFA in preventing account takeovers – and what to do about it.

Welcome to the second installment in our series on transparency at the Microsoft Security Response Center (MSRC). In this ongoing discussion, we discuss our commitment to provide comprehensive vulnerability information to our customers. At MSRC, our...

In this Black Hat USA preview, scholar Jason Healey examines strategies for measuring and shifting the balance of cyber defense.

Microsoft, OpenAI, Google, and Meta GenAI models could be convinced to ditch their guardrails, opening the door to chatbots giving unfettered answers on building bombs, creating malware, and much more.

The vulnerability affects not only AirPods, but also AirPods Max, Powerbeats Pro, Beats Fit Pro, and all models of AirPods Pro.