all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Exploit released for Microsoft bug allowing attacker to masquerade as legitimate entity

Add to bookmarks
Jan. 25, 2023, 9:43 p.m. | Jonathan Greig

The Record by Recorded Future therecord.media

Researchers from Akamai have released a proof-of-concept for a vulnerability affecting a Microsoft tool that allows the Windows’ application programming interface to deal with cryptography.  The vulnerability, CVE-2022-34689, was discovered by the United Kingdom’s National Cyber Security Centre and the National Security Agency. It affects a tool called CryptoAPI and allows an attacker to masquerade […]

agency akamai application application programming interface briefs bug called concept cryptoapi cryptography cve cve-2022-34689 cyber cyber security deal exploit government interface microsoft national national cyber security centre national security national security agency programming proof-of-concept researchers security tool united united kingdom vulnerability windows

Visit resource

More from therecord.media / The Record by Recorded Future

Zelensky officially dismisses Ukrainian security services' cyber chief 2 hours ago | therecord.media
chief cyber government leadership +7
Critical infrastructure operators urged to harden systems against pro-Russia hackers 2 hours ago | therecord.media
critical critical infrastructure government hackers +7
UnitedHealth CEO confirms company paid $22 million ransom in heated Senate hearing 3 hours ago | therecord.media
ceo cybercrime government hearing +5
It’s time to rethink the national vulnerabilities database for the AI era, senators say 3 hours ago | therecord.media
database era government national +3
More than 100 arrested in Spain in $900,000 WhatsApp scheme 5 hours ago | therecord.media
arrested cybercrime news briefs spain +1
Recovering from ransomware attack could cost remote Scottish council £500,000 8 hours ago | therecord.media
attack cost council cybercrime +3
Carmakers lying about requiring warrants before sharing location data, Senate probe finds 1 day, 2 hours ago | therecord.media
carmakers data government location +6
Congress circles UnitedHealth as effects of ransomware attack continue 1 day, 3 hours ago | therecord.media
attack congress continue cybercrime +5
FBI searched Section 702 database half as much in 2023, Biden administration says 1 day, 4 hours ago | therecord.media
administration biden biden administration database +4

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Sr. Cloud Security Engineer

@ BLOCKCHAINS | USA - Remote
View on infosec-jobs.com

Network Security (SDWAN: Velocloud) Infrastructure Lead

@ Sopra Steria | Noida, Uttar Pradesh, India
View on infosec-jobs.com

Senior Python Engineer, Cloud Security

@ Darktrace | Cambridge
View on infosec-jobs.com

Senior Security Consultant

@ Nokia | United States
View on infosec-jobs.com

Manager, Threat Operations

@ Ivanti | United States, Remote
View on infosec-jobs.com

Lead Cybersecurity Architect - Threat Modeling | AWS Cloud Security

@ JPMorgan Chase & Co. | Columbus, OH, United States
View on infosec-jobs.com
View more jobs