Bleeping Computer

Hackers exploit Microsoft MSHTML bug to steal Google, Instagram creds

A newly discovered Iranian threat actor is stealing Google and Instagram credentials belonging to Farsi-speaking targets worldwide using a new PowerShell-based stealer dubbed PowerShortShell by ...
Computer Weekly

Microsoft patches 66 vulnerabilities in September update

Microsoft has pushed fixes for a total of 66 common vulnerabilities and exposures (CVEs), three critical and one moderate in severity, as well as the previously disclosed CVE-2021-40444 zero-day, in ...
techtimes

Microsoft Office Zero-Day Vulnerability Proves Hackers are Innovating This Exploit | How Can You Be Safe?

The Microsoft Office Zero-Day CVE-2021-40444 could be proof that hackers and other cybercriminals could be enhancing this kind of vulnerability. Participants work at their laptops at the annual Chaos ...
Krebs on Security

Tag Archives: CVE-2021-40444

Microsoft today pushed software updates to plug dozens of security holes in Windows and related products, including a vulnerability that is already being exploited in active attacks. Also, Apple has ...
Threat Post

Microsoft Patches Actively Exploited Windows Zero-Day Bug

On Patch Tuesday, Microsoft fixed 66 CVEs, including an RCE bug in MSHTML under active attack as threat actors passed around guides for the drop-dead simple exploit. In September’s Patch Tuesday crop ...
Computer Weekly

Latest Microsoft zero-day being actively exploited

Security analysts are once again warning of another zero-day vulnerability in Microsoft products after reports emerged of active exploitation of CVE-2021-40444, a remote code execution (RCE) ...