Russian Midnight Blizzard Hackers Breached Microsoft Source Code

By Deeba Ahmed Midnight Blizzard aka Cozy Bear and APT29 originally breached Microsoft on January 12, 2024. This is a post from HackRead.com Read the original post: Russian Midnight Blizzard Hackers Breached Microsoft Source Code...

Update on Microsoft Actions Following Attack by Nation State Actor Midnight Blizzard

This blog provides an update on the nation-state attack that was detected by the Microsoft Security Team on January 12, 2024. As we shared, on January 19, the security team detected this attack on our corporate email systems and immediately activated our response process. The Microsoft Threat...

Microsoft Actions Following Attack by Nation State Actor Midnight Blizzard

The Microsoft security team detected a nation-state attack on our corporate systems on January 12, 2024, and immediately activated our response process to investigate, disrupt malicious activity, mitigate the attack, and deny the threat actor further access. Microsoft has identified the threat...

CVE-2023-50376

creationtimestamp| type| source ---|---|--- 2024-01-12 15:11:35+00:00| seen| https://t.me/ctinow/167303...

buz.at Cross Site Scripting vulnerability OBB-3833016

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2023-46167

creationtimestamp| type| source ---|---|--- 2023-12-23 08:38:46+00:00| seen| https://t.me/ctinow/158731 2024-01-12 15:31:43+00:00| seen| https://t.me/ctinow/167324...

CVE-2013-10011

creationtimestamp| type| source ---|---|--- 2023-01-12 18:30:21+00:00| seen| https://t.me/cibsecurity/56421...

locksmithrekeylocks.com Cross Site Scripting vulnerability OBB-2331960

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

bazarok.fr Cross Site Scripting vulnerability OBB-2331585

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Security fix for the ALT Linux 10 package dotnet-bootstrap-3.1 version 3.1.11-alt1

Jan. 28, 2021 Vitaly Lipatov 3.1.11-alt1 - new version 3.1.11 with rpmgs script - .NET Core 3.1.11 - January 12, 2021 - CVE-2021-1723: ASP.NET Core Denial of Service Vulnerability - CVE-2020-1045: Microsoft ASP.NET Core Security Feature Bypass Vulnerability - CVE-2020-1597: NET Core Remote Code...

Security fix for the ALT Linux 9 package dotnet-bootstrap-3.1 version 3.1.11-alt1

Jan. 28, 2021 Vitaly Lipatov 3.1.11-alt1 - new version 3.1.11 with rpmgs script - .NET Core 3.1.11 - January 12, 2021 - CVE-2021-1723: ASP.NET Core Denial of Service Vulnerability - CVE-2020-1045: Microsoft ASP.NET Core Security Feature Bypass Vulnerability - CVE-2020-1597: NET Core Remote Code...

CVE-2021-1649

creationtimestamp| type| source ---|---|--- 2021-01-12 23:01:19+00:00| seen| https://t.me/cibsecurity/22031...

KB4583460 - Description of the security update for SQL Server 2016 SP2 GDR: January 12, 2021

KB4583460 - Description of the security update for SQL Server 2016 SP2 GDR: January 12, 2021 Summary Data can be sent over a network to an affected Microsoft SQL Server instance that might cause code to run against the SQL Server process if a certain extended event is enabled. To learn more about...

MS16-004: Description of the security update for Visio 2010: January 12, 2016

MS16-004: Description of the security update for Visio 2010: January 12, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Microsoft Office file. To learn more about these vulnerabilities, see...

dogearpublishing.net XSS vulnerability

Vulnerable URL:...

gerbergear.com XSS vulnerability

Vulnerable URL: http://www.gerbergear.com/content/search/%27"--!confirmOPENBUGBOUNTY%3C/script /K/' Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 110136 VIP website status:| No...

Threat Outbreak Alert RuleID27189: Email Messages Distributing Malicious Software on January 12, 2017

Medium Alert ID: 52303 First Published: 2017 January 12 13:39 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID27189 may contain the following files: Name |...

alcottelementary.net XSS vulnerability

Vulnerable URL: http://www.alcottelementary.net/apps/account/profile.jsp?activationForwardURL=--%3E%22%3E%3C/a%3E%3C/script%3E%3C/title%3E%3Csvg/onload=alert/XSSPOSED/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability...

Threat Outbreak Alert RuleID20407: Email Messages Distributing Malicious Software on January 12, 2016

Medium Alert ID: 42991 First Published: 2016 January 12 21:17 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID20407 may contain the following files: Name |...

Threat Outbreak Alert RuleID13084: Email Messages Distributing Malicious Software on January 12, 2015

Medium Alert ID: 36986 First Published: 2015 January 13 15:36 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID13084 may contain the following files: Name |...