Week in review: Public MS Word RCE PoC, API exploitation, Patch Tuesday forecast

Microsoft to boost protection against malicious OneNote documents Microsoft has announced that, starting in April 2023, they will be adding enhanced protection when users open or download a file embedded in a OneNote document – a known high-risk phishing file type. Massive GitHub analysis reveals 10 million secrets hidden in 1 billion commits GitGuardian scanned 1.027 billion new GitHub commits in 2022 (+20% compared to 2021) and found 10,000,000 secrets occurrences (+67% compared to 2022). … More →

The post …

analysis api april document documents download embedded exploitation file forecast gitguardian github hidden high malicious microsoft onenote patch patch tuesday phishing poc protection public rce review risk secrets tuesday week in review word