Forbes

New Microsoft Password Hack Uses Windows Themes 0-Day

Try as it may, Microsoft doesn’t always manage to get security patching right the first time. Sometimes, external researchers looking at patching one vulnerability find another that emerges from the ...
CSOonline

Russian state-sponsored hacker used GooseEgg malware to steal Windows credentials

A now-patched Windows Print Spooler flaw was used by Forest Blizzard to drop the privilege-elevating malware for credential stealing and persistence. Russia-linked advanced persistent threat (APT) ...