Security news aggregator

Latest coverage for .NET

.NET is Microsoft's software development platform, and flaws in its runtimes or libraries can expose applications and services to attack.

8 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

.NET is Microsoft’s software-development platform: a runtime, standard libraries, language support, and application frameworks used to build web services, APIs, desktop software, and other applications. The name covers modern, cross-platform .NET as well as the older Windows-focused .NET Framework, which have different release and support paths and should be distinguished during vulnerability management.

Security exposure can arise in the runtime, ASP.NET request-handling components, application configuration, and third-party NuGet packages. Vulnerabilities may enable code execution, denial of service, or unauthorized access when affected components are reachable or incorrectly used; insecure deserialization and weak authentication or authorization are recurring application-level concerns. Operators should inventory the exact runtime and framework versions, apply supported security updates, monitor transitive dependencies, and remove obsolete components. Developers should use platform-provided cryptography and TLS appropriately, validate untrusted input, protect secrets outside source code, and configure authentication and authorization explicitly.

Volume over time

Weekly headline count for the current query.

Showing 8 most recent headlines Filtered view
Bank Info Security 6 months, 4 weeks ago

Russian Credential-Harvesting Apes Ukraine Webmail Platform

Widely Used ukr.net Is a Repeat Focus for APT28 Cyberespionage OperationsDon't expect cyber spies to respect distinctions between military and civilian networks, especially in times of war, warn researchers tracking persistent Russian military intelligence credential-harvesting attacks against users of Ukraine's popular, commercial UKR.NET webmail platform.

Bank Info Security 9 months, 3 weeks ago

Teenage Scattered Spider Suspect Arrested in Las Vegas

Juvenile Male Tied to Hack Attacks Against MGM Resorts and Caesars EntertainmentThe net continues to close on suspected members of the notorious ransomware-wielding group called Scattered Spider, with Las Vegas police announcing the arrest of a teenage, juvenile male suspect tied to 2023 attacks that hit MGM Resorts and Caesars Entertainment.

Bank Info Security 1 year, 2 months ago

Feds Seize Domains in Global Proxy Botnet Crackdown

Russian, Kazakh Hackers Charged in $46M Proxy Botnet SchemeFederal prosecutors charged four hackers for running a proxy botnet that exploited infected routers, using domains like Anyproxy.net to resell U.S. network access globally - and generating over $46M before a coordinated international takedown, according to a Friday indictment.

3,000 Exposed ASP.NET Keys Put Web Applications at Risk of Code Injection AttacksThreat actors are using publicly exposed cryptographic keys - ASP.NET machine keys - to manipulate authentication tokens, decrypt protected information, and insert harmful code into susceptible web servers, creating opportunities for unauthorized control and long-term access.

Bank Info Security 1 year, 7 months ago

Insider Breach, Email Attacks Net $1.7M in HIPAA Fines

Incidents at Pain Management Firm, Pediatric Hospital Affect 50,000 PeopleAn insider breach at a Florida pain management firm and an email breach at a Colorado pediatric hospital have resulted in more than $1.7 million in fines for HIPAA violations found by federal investigators. The two incidents affected fewer than 50,000 people.

Bank Info Security 1 year, 10 months ago

BlackCloak Raises $17M to Boost Cybersecurity for Executives

New Funding Will Help BlackCloak Improve Protection Against Rising CyberthreatsBlackCloak’s $17 million Series B funding round will help the company triple its engineering and product teams, enhancing cybersecurity for executives and high-net-worth individuals. The funding will help BlackCloak address emerging issues such as deepfakes and threat intelligence and modeling.

Bank Info Security 2 years, 5 months ago

2 Chicago Hospitals Are Facing Cyberattack Woes

Pediatric Hospital and Safety-Net Facility Are Dealing With Recent IncidentsTwo Chicago hospitals are navigating the effects of recent cyberattacks. One, a children's hospital, has taken its IT network offline to respond to an incident, and the other, a nonprofit safety-net hospital, is being shaken down by cybercriminals asking for a hefty ransom in return for stolen data.

Bank Info Security 2 years, 6 months ago

Amazon Appeals Privacy Fine of 746 Million Euros

E-Commerce Giant Accuses Luxembourg Regulators of Attacking the CompanyAmazon in a Luxembourg court Tuesday contested a once-record privacy fine levied against the e-commerce giant for its advertising practices by the diminutive country's data protection authority. The fine of 746 million euros stems from a 2018 complaint by French privacy group La Quadrature du Net.