Microsoft Defender ASR rule deletes Windows app shortcuts
The issue affected app shortcuts across onboarded devices after the Microsoft Defender for Endpoint attack surface reduction (ASR) rule was triggered erroneously
Read More...
Unpatched 15-year old Python bug allows code execution in 350k projects
Disclosed in 2007 and tagged as CVE-2007-4559, the security issue never received a patch, the only mitigation provided being a documentation update warning developers about the risk.
Read More...
Microsoft Teams stores auth tokens as cleartext in Windows, Linux, Macs
The newly discovered security issue impacts Windows, Linux, and Mac versions of the application. It refers to Microsoft Teams storing user authentication tokens in clear text without protecting access to them.
Read More...
NSA and CISA share tips to secure the software supply chain
Developers will find helpful guidance from NSA and partners on developing secure code, verifying third party components, hardening the built environment, and delivering the code. Until all DevOps is DevSecOps, the software development lifecycle will be at risk
Read More...