The operators of the QBot malware have been using a DLL hijacking flaw in Windows Calculator to infect computers, which also helps evade detection by security software. DLL hijacking is a common ...

A vulnerability in the free version of Bitdefender Antivirus could be exploited by an attacker to get SYSTEM-level permissions, reserved for the most privileged account on a Windows machine.

Less than 24 hours after Microsoft said it couldn't patch Windows to fix a systemic problem, attack code appeared Tuesday to exploit the company's software. Also on Tuesday, a security firm that's ...

Users of Microsoft’s Internet Explorer (IE) are more vulnerable to rogue DLL attacks than people who use rival browsers such as Mozilla’s Firefox or Google’s Chrome, a security researcher said today.

This month, MITRE will be adding two sub-techniques to its ATT&CK database that have been widely exploited by North Korean threat actors. The first, not entirely new, sub-technique involves ...

On Tuesday, Mozilla released two new versions of Firefox -- 3.6.9 and 3.5.12 -- to patch 15 vulnerabilities, 10 of which it rated as being "critical." Most notably, Firefox is now immune to the DLL ...

As the macOS desktop user base continues to grow year over year, and Windows remains a mainstay, adversaries are growing more adept in their strategies to become more versatile cross-platform. As ...

Dynamic-link library (DLL) side-loading occurs when Windows Side-by-Side (WinSxS) manifests are not explicit about the characteristics of DLLs being loaded by a program. In layman’s terms, DLL ...

Security researchers have spotted a new Chinese espionage campaign targeting Asian gambling companies, which they suspect is the work of the Bronze Starlight group. SentinelLabs revealed that the ...