Security and Windows TCO
-
Edera’s Big Container Security Question: Am I Isolated?
Company releases ‘Am I Isolated’, an open source container security benchmark and Rust-based container runtime scanner.
-
SANS ☛ PDF Object Streams, (Mon, Nov 11th)
The first thing to do, when analyzing a potentially malicious PDF, is to look for the /Encrypt name as explained in diary entry Analyzing an Encrypted Phishing PDF.
-
Cyber Security News ☛ Microsoft Bookings Flaw Let Hackers Create Impersonate User Accounts
A critical security flaw in Microsoft Bookings has been uncovered. This flaw, inherent in the default configuration of Microsoft Bookings, potentially allows attackers to create unauthorized Entra (formerly Azure AD) accounts and obtain fraudulent certificates. This vulnerability poses significant risks to organizations using Microsoft 365 services.
-
New CRON#TRAP malware uses hidden Linux VM [Ed: Still spreading this Microsoft FUD a week later [1, 2]
Cybersecurity researchers have discovered a new malware campaign that targets Windows systems by hiding in a Linux virtual machine. The campaign, called CRON#TRAP, starts with a malicious Windows shortcut file that is likely sent through a phishing email. The shortcut file extracts and starts a custom Linux environment using an open-source tool called Quick Emulator (QEMU).
-
PC World ☛ How to easily update Windows Subsystem for Linux 2’s kernel [Ed: IDG takes Microsoft money for spam (like Office spam) and then relays messages for Microsoft's EEE attack on Linux]
-
Windows TCO
-
Bleeping Computer ☛ Microsoft investigates OneDrive issue causing macOS app freezes [Ed: What people miss out on when they reject proprietary spyware]
Microsoft is investigating a newly acknowledged issue causing macOS applications to hang when opening or saving files in OneDrive. As the company explained, this known issue impacts only systems running macOS Sequoia, Apple’s latest operating system release.
-
Bleeping Computer ☛ Microsoft says recent backdoored Windows 11 updates break SSH connections [Ed: Sabotage of secure tunnels rather than the back doored ones?]
Microsoft has confirmed that last month’s Windows security updates are breaking SSH connections on some Windows 11 22H2 and 23H2 systems. This newly acknowledged issue affects enterprise, IOT, and education customers, but the company says that only a “limited number” of devices are impacted.
-