Post-quantum algorithm vulnerable to side channel attacks
Researchers in Sweden say they have found a way to break a specific implementation of CRYSTALS-Kyber, one of a handful of “post-quantum” public key encryption algorithms chosen to underpin future U.S. government encryption standards.
Microsoft WinGet package manager failing from expired SSL certificate
Starting late evening hours of Saturday, Windows users began reporting issues when attempting to install or upgrade apps via WinGet.
Malware Attack on CircleCI Engineer's Laptop Leads to Recent Security Incident
DevOps platform CircleCI on Friday disclosed that unidentified threat actors compromised an employee's laptop and leveraged malware to steal their two-factor authentication-backed credentials to breach the company's systems and data last month.
Stabilizations and bug fixes. - Added tumbling window scheduling for agents
Microsoft-signed malicious Windows drivers used in ransomware attacks
Microsoft has revoked several Microsoft hardware developer accounts after drivers signed through their profiles were used in cyberattacks, including ransomware incidents. Read more here : Microsoft-signed malicious Windows drivers used in ransomware attacks (bleepingcomputer.com)