90 matches found
Introducing Malwarebytes Cloud Storage Scanning: How to scan for malware in cloud file storage repositories
Were excited to announce Malwarebytes Cloud Storage Scanning, a new service that extends Nebula malware scanning options to include files stored on cloud storage repositories that are part of your organizations digital ecosystem. Today, the service supports scanning of files under 100Mb in size...
Looking Over the Nation-State Actors’ Shoulders
Looking over the nation-state actors’ shoulders: Even they have a difficult day sometimes By Trellix and Marc Elias · Febraury 17, 2022 Have you ever been curious about how nation-state actors operate and what their day-to-day work looks like? This blog reveals some of these details observed base...
CVE-2022-23255
CVE-2022-23255 corresponds to a security feature bypass in Microsoft OneDrive for Android. Connected sources (PT-2022-1677 and NCSC-2022-0103) describe an improper authorization flaw that allows bypassing security controls on OneDrive for Android, potentially enabling access to protected informat...
CVE-2022-23255 Microsoft OneDrive for Android Security Feature Bypass Vulnerability
...
Iranian Hackers Using New Marlin Backdoor in 'Out to Sea' Espionage Campaign
An advanced persistent threat APT group with ties to Iran has refreshed its malware toolset to include a new backdoor dubbed Marlin as part of a long-running espionage campaign that started in April 2018. Slovak cybersecurity company ESET attributed the attacks — codenamed "Out to Sea" — to a...
Microsoft OneDrive 安全特征问题漏洞
Microsoft OneDrive is a cloud backup application from the US-based Microsoft Corporation Microsoft. The program has features such as automatic backup of photo albums, online office and file sharing.Microsoft OneDrive for Android has a security feature bypass vulnerability, no details of the...
PT-2022-1677 · Microsoft · Onedrive App For Android
Name of the Vulnerable Software and Affected Versions: Microsoft OneDrive for Android affected versions not specified Description: The issue is related to a security feature bypass vulnerability in the file hosting service of OneDrive for Android, associated with improper authorization...
KLA12454 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, execute arbitrary code, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. An...
Hackers Exploited MSHTML Flaw to Spy on Government and Defense Targets
Cybersecurity researchers on Tuesday took the wraps off a multi-stage espionage campaign targeting high-ranking government officials overseeing national security policy and individuals in the defense industry in Western Asia. The attack is unique as it leverages Microsoft OneDrive as a...
Microsoft OneDrive for Mac suffers from dll hijacking vulnerability
Microsoft OneDrive is a cloud backup application. The program features automatic backup of photo albums, online work and file sharing. Microsoft OneDrive for Mac suffers from a dll hijacking vulnerability. An attacker can exploit the vulnerability to load a malicious dll and execute malicious cod...
Microsoft OneDrive for Mac suffers from dll hijacking vulnerability (CNVD-2021-05387)
Microsoft OneDrive is a cloud backup application. The program features automatic backup of photo albums, online work and file sharing. Microsoft OneDrive for Mac suffers from a dll hijacking vulnerability. An attacker can exploit the vulnerability to load a malicious dll and execute malicious cod...
Microsoft OneDrive for Mac suffers from dll hijacking vulnerability (CNVD-2021-05386)
Microsoft OneDrive is a cloud backup application. The program features automatic backup of photo albums, online work and file sharing. Microsoft OneDrive for Mac suffers from a dll hijacking vulnerability. An attacker can exploit the vulnerability to load a malicious dll and execute malicious cod...
Microsoft OneDrive suffers from a DLL hijacking vulnerability (CNVD-2021-03304)
OneDrive is Microsoft's next-generation network storage tool, renamed from SkyDrive.OeDrive's versions span multiple endpoints, web, mobile, and PC. Microsoft OneDrive has a DLL hijacking vulnerability, which can be exploited by attackers to remotely control a user's computer or implant a Trojan...
Microsoft OneDrive Multiple Elevation of Privilege
The version of Microsoft OneDrive installed on the remote Windows host is prior to 20.170.0824.0001. It is, therefore, affected by the following vulnerabilities : - An unspecified flaw exists related to handling symbolic links that could allow elevation of privileges. CVE-2020-16851,...
Microsoft OneDrive Multiple Vulnerabilities (Sep 2020)
This host is missing an important security update according to Microsoft Security Updates for month of September SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Microsoft OneDrive Elevation of Privilege (CVE-2020-0935)
The version of Microsoft OneDrive installed on the remote Windows host is prior to 19.232.1124.0010. It is, therefore, affected by an elevation of privilege vulnerability due to the application improperly handling symbolic links. An authenticated, local attacker can exploit this, by running a...
Microsoft OneDrive Privilege Escalation Vulnerability (Jul 2020)
This host is missing an important security update according to Microsoft Security Updates for month of July SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Microsoft OneDrive Detection (Windows SMB Login)
SMB login-based detection of Microsoft OneDrive. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft OneDrive Installed
Binary data microsoftonedriveinstalled.nbin...
Microsoft OneDrive Elevation of Privilege (CVE-2020-1465)
The version of Microsoft OneDrive installed on the remote Windows host is prior to 20.084.0426.0007. It is, therefore, affected by an elevation of privilege vulnerability that allows file deletion in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the...