all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

10-year-old Windows bug with 'opt-in' fix exploited in 3CX attack

Add to bookmarks
March 31, 2023, 2:38 p.m. | Lawrence Abrams

BleepingComputer www.bleepingcomputer.com

A 10-year-old Windows vulnerability is still being exploited in attacks to make it appear that executables are legitimately signed, with the fix from Microsoft still "opt-in" after all these years. Even worse, the fix is removed after upgrading to Windows 11. [...]

3cx attack attacks bug exploited fix microsoft old opt-in security vulnerability windows windows 11 windows vulnerability

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

FBI warns of gift card fraud ring targeting retail companies 2 hours ago | www.bleepingcomputer.com
attacks card card fraud companies +20
City of Wichita breach claimed by LockBit ransomware gang 3 hours ago | www.bleepingcomputer.com
bill bills breach city +18
Microsoft: April Windows Server updates also cause crashes, reboots 3 hours ago | www.bleepingcomputer.com
april authority controller crashes +16
Massive webshop fraud ring steals credit cards from 850,000 people 5 hours ago | www.bleepingcomputer.com
called card credit credit card +13
DocGo discloses cyberattack after hackers steal patient health data 21 hours ago | www.bleepingcomputer.com
breached care cyberattack data +10
Hackers exploit LiteSpeed Cache flaw to create WordPress admins 22 hours ago | www.bleepingcomputer.com
administrator cache control exploit +11
UK confirms Ministry of Defence payroll data exposed in data breach 1 day ago | www.bleepingcomputer.com
access actor breach breached +15
New attack leaks VPN traffic using rogue DHCP servers 1 day, 1 hour ago | www.bleepingcomputer.com
attack attackers can dhcp +12
Over 50,000 Tinyproxy servers vulnerable to critical RCE flaw 1 day, 2 hours ago | www.bleepingcomputer.com
code code execution critical cve +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Junior Cybersecurity Analyst - 3346195

@ TCG | 725 17th St NW, Washington, DC, USA
View on infosec-jobs.com

Cyber Intelligence, Senior Advisor

@ Peraton | Chantilly, VA, United States
View on infosec-jobs.com

Consultant Cybersécurité H/F - Innovative Tech

@ Devoteam | Marseille, France
View on infosec-jobs.com

Manager, Internal Audit (GIA Cyber)

@ Standard Bank Group | Johannesburg, South Africa
View on infosec-jobs.com

Staff DevSecOps Engineer

@ Raft | San Antonio, TX (Local Remote)
View on infosec-jobs.com

Domain Leader Cybersecurity

@ Alstom | Bengaluru, KA, IN
View on infosec-jobs.com
View more jobs