Microsoft Implements Windows Zerologon Flaw ‘Enforcement Mode’

Starting Feb. 9, Microsoft will enable Domain Controller “enforcement mode” by default to address CVE-2020-1472.

Go to Source
Author: {ThreatPost}

Read more

Critical WordPress-Plugin Bug Found in ‘Orbit Fox’ Allows Site Takeover

Two security vulnerabilities — one a privilege-escalation problem and the other a stored XSS bug — afflict a WordPress plugin with 40,000 installs.

Go to Source
Author: {ThreatPost}… Read more