Patch Tuesday for September 2024: Microsoft Catches Four Zero-Day Vulnerabilities
A Mark of the Web security alert vulnerability and three others have been exploited in the wild and are now covered by Redmond’s monthly patch batch.
Microsoft
Microsoft Is Disabling Default ActiveX Controls in Office 2024 to Improve Security
Microsoft has been on the warpath against legacy Office features that are providing entry points for bad actors since 2018.
New Chrome Zero-Day
According to Microsoft researchers, North Korean hackers have been using a Chrome zero-day exploit to steal cryptocurrency.
Microsoft Publisher Books Its Retirement Party for 2026
Microsoft is confirming plans to deprecate its Publisher application in 2026. From a report: This writer has fond memories of Microsoft Publisher, which started life in 1991 as a desktop publisher for Windows 3.0. While alternatives existed in the form…
Microsoft Develops AI Server Gear To Lessen Reliance on Nvidia
Microsoft is developing a new network card that could improve the performance of its Maia AI server chip and potentially reduce the company’s reliance on chip designer Nvidia, The Information reported on Tuesday. Reuters: Microsoft CEO Satya Nadella ha…
Microsoft Is Spying on Users of Its AI Tools
Microsoft announced that it caught Chinese, Russian, and Iranian hackers using its AI tools—presumably coding tools—to improve their hacking abilities.
From their report:
In collaboration with OpenAI, we are sharing threat intelligence showing detected state affiliated adversaries—tracked as Forest Blizzard, Emerald Sleet, Crimson Sandstorm, Charcoal Typhoon, and Salmon Typhoon—using LLMs to augment cyberoperations.
The only way Microsoft or OpenAI would know this would be to spy on chatbot sessions. I’m sure the terms of service—if I bothered to read them—gives them that permission. And of course it’s no surprise that Microsoft and OpenAI (and, presumably, everyone else) are spying on our usage of AI, but this confirms it…
Microsoft Fixes Edge Browser Bug That Was Stealing Chrome Tabs and Data
An anonymous reader shared an news report: Microsoft has fixed an issue where its Edge browser was again misbehaving, this time by automatically importing browsing data and tabs from Chrome without consent. I personally experienced the bug last month, …
New MonikerLink Flaw Exposes Outlook Users to Data Theft and Malware
By Waqas
The #MonikerLink security flaw in Microsoft Outlook allows hackers to execute arbitrary code on the targeted device.
This is a post from HackRead.com Read the original post: New MonikerLink Flaw Exposes Outlook Users to Data Theft and Malware
Microsoft-backed OpenAI valued at $80bn after company completes deal
Company to sell existing shares in ‘tender offer’ led by venture firm Thrive Capital, in similar deal as early last yearMicrosoft-backed OpenAI has completed a deal that values the artificial intelligence company at $80bn or more, the New York Times re…
Microsoft ‘Retires’ Azure IoT Central In Platform Rethink
Lindsay Clark reports via The Register: In a statement on the Azure console, Microsoft confirmed the Azure IoT Central service is being retired on March 31, 2027. “Starting on April 1, 2024, you won’t be able to create new application resources; howeve…