Microsoft stacks up 113 CVEs for January Patch Tuesday
Categories: X-ops
Tags: Patch Tuesday, Microsoft, Windows
Similar Posts
Judge lets state auditor’s investigation into data breach affecting Blue Cross Blue Shield members move forward
Bys sThere’s an update to a lawsuit involving Blue Cross Blue Shield of Montana’s parent company, HCSC, and Montana’s state auditor. As previously reported, after BCBSMT notified the state of the Conduent breach that had affected 462,000 members, the state auditor opened an investigation into whether the notification to the state was timely. HCSC claimed the……
6 Browser-Based Attacks Security Teams Need to Prepare For Right Now
Bys sAttacks that target users in their web browsers have seen an unprecedented rise in recent years. In this article, we’ll explore what a “browser-based attack” is, and why they’re proving to be so effective. What is a browser-based attack? First, it’s important to establish what a browser-based attack is. In most scenarios, attackers don’t think…
Malicious Browser Extensions Infect 722 Users Across Latin America Since Early 2025
Bys sCybersecurity researchers have shed light on a new campaign targeting Brazilian users since the start of 2025 to infect users with a malicious extension for Chromium-based web browsers and siphon user authentication data. “Some of the phishing emails were sent from the servers of compromised companies, increasing the chances of a successful attack,” Positive Technologies…
Change Healthcare Seeks Dismissal of Data Breach Lawsuits Brought by Consumers and Medical Providers
Bys sIrvin Jackson reports: Change Healthcare Inc. has filed a number of motions to dismiss lawsuits brought on behalf of both individuals and healthcare providers, seeking damages for a massive data breach last year, which exposed private health information for about a third of all Americans, and disrupted the processing of medical payments for providers nationwide….
New Research: 64% of 3rd-Party Applications Access Sensitive Data Without Justification
Bys sResearch analyzing 4,700 leading websites reveals that 64% of third-party applications now access sensitive data without business justification, up from 51% in 2024. Government sector malicious activity spiked from 2% to 12.9%, while 1 in 7 Education sites show active compromise. Specific offenders: Google Tag Manager (8% of violations), Shopify (5%), Facebook Pixel (4%). Download…
UK: Secret gagging order should not have been used to cover up Afghan data breach, Sir Ben Wallace says
Bys sHolly Bancroft reports: Sir Ben Wallace has said he would not have backed the use of a secret gagging order to cover-up the catastrophic Afghan data breach that potentially put thousands of Afghans who helped UK forces at risk from the Taliban. The former defence secretary told MPs on Tuesday that he had directed that a time-limited injunction be used to protect……