"Microsoft 365, Office users hit by wave of '30088-27' update errors."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 10 July 2024, 2346 UTC.

Content and Source:

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (

Microsoft 365, Office users hit by wave of ‘30088-27’ update errors

  • Over the last month, Microsoft 365 and Microsoft Office users have been experiencing "30088-27" errors when attempting to update the application.

  • Bitcoin

Huione Guarantee exposed as a $11 billion marketplace for cybercrime

  • The seemingly legitimate online marketplace Huione Guarantee is being used as a platform for laundering money from online scams, especially "pig butchering" investment fraud, researchers say.

  • GitLab

GitLab: Critical bug lets attackers run pipelines as other users

  • GitLab warned today that a critical vulnerability in its product's GitLab Community and Enterprise editions allows attackers to run pipeline jobs as any other user.

  • ViperSoftX

ViperSoftX malware covertly runs PowerShell using AutoIT scripting

  • The latest variants of the ViperSoftX info-stealing malware use the common language runtime (CLR) to load and execute PowerShell commands within AutoIt scripts to evade detection.

  • PowerShell

Automate Windows this summer with $63 off this PowerShell training

  • PowerShell is one of the most useful and least used tools for Windows. Learn how to script and automate in Windows for $14.97, $63 off the $78 MSRP now through 11:59pm PST on July 21st.

    • JULY 10, 2024
    • 02:09 PM
    • Comment Count 0
  • CISA

CISA urges devs to weed out OS command injection vulnerabilities

  • ​CISA and the FBI urged software companies on Wednesday to review their products and eliminate path OS command injection vulnerabilities before shipping.

  • North Korean hackers

Japan warns of attacks linked to North Korean Kimsuky hackers

  • Japan's Computer Emergency Response Team Coordination Center (JPCERT/CC) is warning that Japanese organizations are being targeted in attacks by the North Korean 'Kimsuky' threat actors.

  • Windows

Windows MSHTML zero-day used in malware attacks for over a year

  • Microsoft fixed a Windows zero-day vulnerability that has been actively exploited in attacks for eighteen months to launch malicious scripts while bypassing built-in security features.

  • Windows 11

Microsoft fixes Windows 11 bug causing reboot loops, taskbar freezes

  • Microsoft has fixed a known issue causing restart loops and taskbar problems on Windows 11 systems after installing the June KB5039302 preview update.

  • Why all accounts (even test accounts) need strong passwords

Why all accounts (even test accounts) need strong passwords

  • Strong passwords are the key to protecting your organization's accounts - even the accounts you've forgotten about. Learn from Specops Software about securing test accounts and environments before they are breached.

  • Deeper Connect Air

Travel safely this summer with $60 off the Deeper Connect Air

  • When you're on the road, data safety shouldn't be on your mind. The Deeper Connect Air digital safety tool helps you stay safe for $159, $60 off the $219 MSRP with code CONNECT at checkout through 11:59PM PST on July 21st.

    • JULY 10, 2024
    • 07:06 AM
    • Comment Count 0
  • ParisOlympics

Ticket Heist fraud gang uses 700 domains to sell fake Olympics tickets

  • A large-scale fraud campaign with over 700 domain names is likely targeting Russian-speaking users looking to purchase tickets for the Summer Olympics in Paris.

  • Google

Google Advanced Protection Program gets passkeys for high-risk users

  • Google announced today that passkeys are now available for high-risk users when enrolling in the Advanced Protection Program, which provides the strongest level of account security.

  • Russian flag

US disrupts AI-powered bot farm pushing Russian propaganda on X

  • Almost a thousand Twitter accounts controlled by a large bot farm pushing Russian propaganda and domains used to register the bots were taken down in a joint international law enforcement operation led by the U.S. Justice Department.

  • Blast-RADIUS

New Blast-RADIUS attack bypasses widely-used RADIUS authentication

  • Blast-RADIUS, an authentication bypass in the widely used RADIUS/UDP protocol, enables threat actors to breach networks and devices in man-in-the-middle MD5 collision attacks.

  • Fujitsu

Fujitsu confirms customer data exposed in March cyberattack

  • Fujitsu confirms that information related to some individuals and customers' business has been compromised during the data breach detected earlier this year.

  • Windows 10

Windows 10 KB5040427 update released with Copilot changes, 12 other fixes

  • Microsoft has released the KB5040427 cumulative update for Windows 10 21H2 and Windows 10 22H2 with 13 changes, including Microsoft Copilot now behaving like an app, providing more flexibility on how it is displayed.

  • CompTIA

Study up this summer with $535 off this CompTIA exam prep super bundle

  • Certification is an excellent way to move your IT career forward. This 15-course CompTIA certification bundle offers exam prep on your schedule for $49.97, $535 off the $585 MSRP, now through 11:59 PM PST on July 21st.

    • JULY 09, 2024
    • 02:10 PM
    • Comment Count 0
  • Patch Tuesday

Microsoft July 2024 Patch Tuesday fixes 142 flaws, 4 zero-days

  • Today is Microsoft's July 2024 Patch Tuesday, which includes security updates for 142 flaws, including two actively exploited and two publicly disclosed zero-days.

  • Windows 11

Windows 11 KB5040442 update released with 31 fixes, changes

  • Microsoft is rolling out the KB5040442 cumulative update for Windows 11 23H2, which includes up to thirty-one improvements and changes. The changes include a new feature that adds back the "Show Desktop" button, which Copilot replaced.



Popular posts from this blog

SecurityWeek Briefing.

Cyber War Newswire

SecurityWeek Briefing.