all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Exploit released for Microsoft bug allowing attacker to masquerade as legitimate entity

Add to bookmarks
Jan. 25, 2023, 9:45 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news


Researchers from Akamai have released a proof-of-concept for a vulnerability affecting a Microsoft tool that allows the Windows’ application programming interface to deal with cryptography. 


The vulnerability, CVE-2022-34689, was discovered by the United Kingdom’s National Cyber Security Centre and the National Security Agency. It affects a tool called CryptoAPI and allows an attacker to masquerade as a legitimate entity. The bug, which carries a vulnerability score of 7.5 out of a possible 10, was patched in August 2022 but …

agency akamai application application programming interface bug called concept cryptoapi cryptography cve cve-2022-34689 cyber cyber security deal exploit interface microsoft national national cyber security centre national security national security agency programming proof-of-concept researchers score security tool united united kingdom vulnerability windows

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

US advances on cyber goals amid rapidly changing threat environment, White House says an hour ago | malware.news
address attacks challenges changing +18
Dozens of organizations worldwide claimed to be compromised by LockBit 3 hours ago | malware.news
article claim compromised cybernews +14
Ransomware attack disrupts Kansas city 3 hours ago | malware.news
article attack bleepingcomputer city +15
Widespread RCE compromise likely with critical TinyProxy bug 3 hours ago | malware.news
article attacks bug code +23
MedStar breach impacts 183K patients 3 hours ago | malware.news
article breach compromised cybernews +12
Shortcomings of updated US critical infrastructure defense policy evaluated 3 hours ago | malware.news
administration article biden biden administration +25
Cybersecurity qualms increased by AI 3 hours ago | malware.news
advanced article artificial artificial intelligence +14
Enhancing SOC security: Introducing Pure Signal™ Scout Insight 3 hours ago | malware.news
alert alert fatigue analysis analyst +24
Sonatype Lifecycle best practices: Reference policies, backup and restore 3 hours ago | malware.news
article backup backup and restore best practices +25

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Product Regulatory Compliance Specialist

@ Avery Dennison | Oegstgeest, Netherlands
View on infosec-jobs.com

Cyber Security Analyst

@ FinClear | Melbourne, Australia
View on infosec-jobs.com

Senior Application Security Manager, United States-(Virtual)

@ Stanley Black & Decker | New Britain CT USA - 1000 Stanley Dr
View on infosec-jobs.com

Vice President - Information Security Management - FedRAMP

@ JPMorgan Chase & Co. | Chicago, IL, United States
View on infosec-jobs.com

Vice President, Threat Intelligence & AI

@ Arctic Wolf | Remote - Minnesota
View on infosec-jobs.com

Cybersecurity Analyst

@ Resource Management Concepts, Inc. | Dahlgren, Virginia, United States
View on infosec-jobs.com
View more jobs