Information Security newsfeeds from around the world in English and French. Find it all in one place since 2004. You'll find online the last 5 years.
Microsoft is getting ready to improve the protection of Office users by automatically blocking more content sourced from the internet. Building on previous restrictions that applied to macros in Word and Excel documents, the company is now preparing to block XLL add-ins in Excel files. XLL add-ins are dynamic link library (DLL) files written in […]
Continue ReadingHabituellement, lorsqu’un utilisateur essaie de lire un document Office qui a été reçu par e-mail ou téléchargé depuis un site Web, Microsoft Office ouvre ce fichier en mode protégé. Pour ce faire, le système utilise la protection MotW (Mark-of-the-Web), l’un des mécanismes de défense par défaut de Windows. La protection MotW marque les fichiers téléchargés […]
Continue ReadingThe coolest video game ever! And lots of solid cybersecurity advice – listen now!
Continue ReadingHow 2022 is your encryption?
Continue ReadingOffice 365 is a cloud-based suite of collaboration solutions that includes Exchange Online for email and calendaring, Office, and many other collaboration tools. As a University faculty, student, or staff member, you can download and install Office ProPlus (including Word, Excel, and PowerPoint) on up to five devices, such as a mobile phone, tablet, or […]
Continue ReadingLes chasseurs de vulnérabilités Windows ont récemment fait une nouvelle découverte : 64 vulnérabilités dans plusieurs produits et services Windows, dont cinq critiques. Deux vulnérabilités ont été divulguées au grand public avant la sortie des correctifs, ce qui les a techniquement transformé en vulnérabilités de type zero-day, et une autre est activement exploitée par les cybercriminels. […]
Continue ReadingResecurity, a Los Angeles-based cybersecurity company protecting Fortune 500 worldwide, identified a new RAT (Remote Administration Tool) advertised in Dark Web and Telegram called Escanor. The threat actors offer Android-based and PC-based versions of RAT, along with HVNC module and exploit builder to weaponize Microsoft Office and Adobe PDF documents to deliver malicious code. The […]
Continue ReadingVenafi announced the findings of a dark web investigation into ransomware spread via malicious macros. Conducted in partnership with criminal intelligence provider Forensic Pathways between November 2021 and March 2022, the research analyzed 35 million dark web URLs, including marketplaces and forums, using the Forensic Pathways Dark Search Engine. The findings uncovered 475 webpages of […]
Continue Reading20 years to turn it on, then 20 weeks to turn it off, then just 2 weeks to turn it back on again. That’s progress!
Continue ReadingAn Office anti-malware setting that took more than 20 years to arrive… and fewer than 20 weeks to vanish again.
Continue Reading