Researchers say Slack and Microsoft Teams have fundamental issues vetting third-party apps and should overhaul their app model to be more like traditional OSes (Andy Greenberg/Wired)

September 26, 2022

Andy Greenberg / Wired:
Researchers say Slack and Microsoft Teams have fundamental issues vetting third-party apps and should overhaul their app model to be more like traditional OSes  —  New research shows how third-party apps could be exploited to infiltrate these sensitive workplace tools.

Categories: Uncategorized

Related Articles

Microsoft releases 68 security fixes, including patches for six actively exploited Windows zero-day flaws and 11 vulnerabilities classified as Critical (Lawrence Abrams/BleepingComputer)

Lawrence Abrams / BleepingComputer:
Microsoft releases 68 security fixes, including patches for six actively exploited Windows zero-day flaws and 11 vulnerabilities classified as Critical  —  Today is Microsoft’s November 2022 Patch Tuesday, and with it comes fixes for six actively exploited Windows vulnerabilities and a total of 68 flaws.

November 9, 2022

A look at Ukraine’s efforts to block crypto donations to Russia’s military and paramilitary groups, who researchers say have received $4M+ since the invasion (Andy Greenberg/Wired)

Andy Greenberg / Wired:
A look at Ukraine’s efforts to block crypto donations to Russia’s military and paramilitary groups, who researchers say have received $4M+ since the invasion  —  Blockchain investigators have uncovered at least $4 million—and counting—in cryptocurrency donations to Russia’s violent militia groups.

October 8, 2022

Fortinet confirms a critical remote authentication bypass vulnerability in FortiOS, FortiProxy, and FortiSwitchManager is being exploited; a patch is available (Sergiu Gatlan/BleepingComputer)

Sergiu Gatlan / BleepingComputer:
Fortinet confirms a critical remote authentication bypass vulnerability in FortiOS, FortiProxy, and FortiSwitchManager is being exploited; a patch is available  —  Fortinet has confirmed today that a critical authentication bypass security vulnerability patched last week is being exploited in the wild.

October 10, 2022

VMware and Google’s Mandiant say a sophisticated hacker group has been installing backdoors in VMware’s virtualization software on multiple targets’ networks (Andy Greenberg/Wired)

Andy Greenberg / Wired:
VMware and Google’s Mandiant say a sophisticated hacker group has been installing backdoors in VMware’s virtualization software on multiple targets’ networks  —  For decades, security researchers warned about techniques for hijacking virtualization software.  Now one group has put them into practice.

September 29, 2022

Microsoft confirms two zero-day vulnerabilities in Exchange Server 2013, 2016, and 2019 are being exploited; one researcher suspects a Chinese threat actor (Sergiu Gatlan/BleepingComputer)

Sergiu Gatlan / BleepingComputer:
Microsoft confirms two zero-day vulnerabilities in Exchange Server 2013, 2016, and 2019 are being exploited; one researcher suspects a Chinese threat actor  —  Microsoft has confirmed that two recently reported zero-day vulnerabilities in Microsoft Exchange Server 2013, 2016, and 2019 are being exploited in the wild.

September 30, 2022

Report

Harassment or bullying behavior
Contains mature or sensitive content
Contains misleading or false information
Contains abusive or derogatory content
Contains spam, fake content or potential malware

Block Member?

Please confirm you want to block this member.

You will no longer be able to:

  • See blocked member's posts
  • Mention this member in posts
  • Invite this member to groups
  • Message this member
  • Add this member as a connection

Please note: This action will also remove this member from your connections and send a report to the site admin. Please allow a few minutes for this process to complete.

Report

You have already reported this .