Cybercriminals are abusing a post-compromise zero-day vulnerability in the Windows Common Log File System (CLFS) to deploy ransomware. The Microsoft Threat Intelligence Center (MSTIC) and Microsoft ...

A joint investigation by the Microsoft Threat Intelligence Center and Microsoft Security Response Center found that a zero-day vulnerability in the Windows Common Log File System had been exploited by ...

Multiple ransomware groups seen abusing Windows Common Log File System bug Among the abusers are RansomEXX and Play The bug is used to drop backdoors, encryptors, and more Notorious ransomware actors ...

Microsoft today released updates to plug at least 121 security holes in its Windows operating systems and software, including one vulnerability that is already being exploited in the wild. Eleven of ...

A new report out today from cybersecurity company Fortra LLC is warning of a vulnerability in all versions of Windows 10 and 11 that, if triggered, could cause system instability and a denial of ...

Update your systems ASAP, as Bleeping Computer points out that today’s Patch Tuesday updates include one for a zero-day flaw already exploited by attackers. CVE-2024-49138 - Microsoft Windows Common ...

Microsoft has released a patch for a Windows zero day vulnerability that has been exploited by cybercriminals in ransomware attacks. The vulnerability, identified as CVE-2023-28252, is a privilege ...

A newly discovered zero-day vulnerability in the Microsoft Common Log File System (CLFS) – which is being exploited as part of an attack chain delivering the Nokoyawa ransomware – is among nearly 100 ...

Microsoft said it observed a threat actor known as Storm-2460 abuse a use after free flaw in Windows Common Log File System Driver The flaw is used to deploy PipeMagic, which is then used to deliver ...

Microsoft on Tuesday released software updates to fix at least 70 vulnerabilities in Windows and related products, including five zero-day flaws that are already seeing active exploitation. Adding to ...