News

Bleeping Computer

New attack uses MSC files and Windows XSS flaw to breach networks

A novel command execution technique dubbed 'GrimResource' uses specially crafted MSC (Microsoft Saved Console) and an unpatched Windows XSS flaw to perform code execution via the Microsoft Management ...
TWCN Tech News

MMC could not create the snap-in on Windows 11/10 [Fix]

Snap-ins are the components that make up consoles and are managed by MMC (Microsoft Management Console). Some users are experiencing an MMC error when opening ...
Bleeping Computer

EncryptHub linked to MMC zero-day attacks on Windows systems

A threat actor known as EncryptHub has been linked to Windows zero-day attacks exploiting a Microsoft Management Console vulnerability patched this month. Uncovered by Trend Micro staff researcher ...
Infosecurity-magazine.com

Microsoft Fixes Five Zero-Days in October Patch Tuesday

Microsoft has patched two zero-day bugs under active exploitation and a further three that were publicly disclosed in this month’s Patch Tuesday update round. CVE-2024-43572 is a remote code execution ...