Microsoft Office Graphics Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-26805, CVE-2022-26806, CVE-2022-44692, CVE-2022-47211, CVE-2022-47212, CVE-2022-47213.

CVE-2022-26804

Microsoft Office Graphics Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-26804, CVE-2022-26806, CVE-2022-44692, CVE-2022-47211, CVE-2022-47212, CVE-2022-47213.

CVE-2022-26805

Microsoft Office Graphics Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-26804, CVE-2022-26805, CVE-2022-44692, CVE-2022-47211, CVE-2022-47212, CVE-2022-47213.

CVE-2022-26806

Microsoft released its monthly security update on Tuesday, disclosing 48 vulnerabilities. Of these vulnerabilities, 6 are classified as “Critical”, 41 are classified as “Important”, with the remaining vulnerability classified as “Moderate.”

Tuesday, December 13, 2022 14:12

Microsoft released its monthly security update on Tuesday, disclosing 48 vulnerabilities. Of these vulnerabilities, 6 are classified as “Critical”, 41 are classified as “Important”, with the remaining vulnerability classified as “Moderate.”

One of the critical vulnerabilities, which Microsoft considers to be “more likely” to be exploited is CVE-2022-41076, a remote code execution (RCE) vulnerability in Windows PowerShell which could allow a previously authenticated attacker to escape the PowerShell Remoting Session Configuration and run unauthorized commands on compromised systems.

Another critical vulnerability, CVE-2022-41127, affects Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central. Successful exploitation could allow an attacker to execute code on Dynamic NAV servers within the context of the service account under which Dynamics is running.

Two additional critical vulnerabilities, CVE-2022-44670 and CVE-2022-44676 are remote code execution vulnerabilities affecting the Windows Secure Socket Tunneling Protocol (SSTP). Successful exploitation of these vulnerabilities requires an attacker to win a race condition but could enable an attacker to remotely execute code on RAS servers.

The final two critical vulnerabilities being addressed this month are remote code execution vulnerabilities in Microsoft Sharepoint Server. Successful exploitation of CVE-2022-44690 or CVE-2022-44693 could enable an attacker to execute code on Sharepoint Servers but require the attacker to first be authenticated and granted the ability to use the Manage Lists feature in Sharepoint.

Talso would also like to highlight 6 important vulnerabilities that Microsoft considers to be “more likely” to be exploited.

*   CVE-2022-41121: Windows Graphics Component Elevation of Privilege Vulnerability
*   CVE-2022-44671: Windows Graphics Component Elevation of Privilege Vulnerability
*   CVE-2022-44673: Windows Client Server Run-Time Subsystem (CSRSS) Elevation of Privilege Vulnerability
*   CVE-2022-44675: Windows Bluetooth Driver Elevation of Privilege Vulnerability
*   CVE-2022-44683: Windows Kernel Elevation of Privilege Vulnerability
*   CVE-2022-44704: Microsoft Windows Sysmon Elevation of Privilege Vulnerability

A complete list of all the vulnerabilities Microsoft disclosed this month is available on its update page.

In response to these vulnerability disclosures, Talos is releasing a new Snort rule set that detects attempts to exploit some of them. Please note that additional rules may be released at a future date and current rules are subject to change pending additional information. Cisco Secure Firewall customers should use the latest update to their ruleset by updating their SRU. Open-source Snort Subscriber Rule Set customers can stay up to date by downloading the latest rule pack available for purchase on Snort.org.

The rules included in this release that protect against the exploitation of many of these vulnerabilities are 60972 - 60975, 60977 - 60978. For Snort 3, the following rules are also available to protect against these vulnerabilities: 300339 - 300341.

Microsoft Patch Tuesday for December 2022  — Snort rules and prominent vulnerabilities

By Waqas
Another day, another data breach at Uber - This time around, a hacker has leaked stolen data on a prominent cybercrime and hacking forum.
This is a post from HackRead.com Read the original post: New Uber Data Breach – Hacker Leaks Employee and Other Sensitive Data

Another day, **another data breach at Uber**. This time, one of the world’s leading ride-sharing platforms has suffered yet another security incident, after which hackers posted sensitive employee information and internal corporate data.

It is worth noting that the data has been leaked on BreachForums, which surfaced as an alternative to the now-defunct **now-sized Raidforums**.

**Incident Details**

The cyberattack targeting Uber and Uber Eats occurred over the weekend. The news was first broken by RestorePrivacy on Saturday morning when a hacker with the username UberLeaks started leaking data stolen from the company on a popular data leak platform.

The hacker created four different topics to post the data. This includes Uber MDM at uberhub.uberinternal.com, Uber Eats MDM, and third-party platforms Teqtivity MDM and TripActions MDM.

Image source: Waqas – Hackread.com

**What Data Was Leaked?**

Hackread.com has seen the data and it can be confirmed that it contains several archives, including the source code linked with mobile device management platforms that Uber Eats and Uber both use, along with third-party vendor services.

The leaked data also includes data destruction reports, IT asset management reports, Windows domain login names, and email IDs, apart from corporate info. The Windows Active Director information and email IDs category contained over 77,000 records of Uber employees.

It is possible that this data doesn’t belong to the September breach because the files are unrelated to that incident, and Uber doesn’t own the code. Though Uber users don’t need to feel scared by this data breach, the company’s employees should be worried as they could become a **target of phishing attacks**.

Screengrab source: Waqas – Hackread.com

**Who Could be the Perpetrator?**

Each of the four data leak category titles refers to a **Lapsus$ hacking group** member, also known for high-profile cyberattacks on Samsung, Nvidia, Microsoft, and Ubisoft. It is suspected that the same hacking group has targeted Uber because Lapsus$ had already **attacked Uber in September** and managed to access its internal network and Slack server.

1.  **Hundreds of Uber Eats User records leaked on Dark Web**
2.  **Uber Hacker Targets Rockstar Games, Leaks Trove of GTA 6 Data**
3.  **Uber Rival Careem Hacked, 14 million customer & driver data stolen**

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

New Uber Data Breach – Hacker Leaks Employee and Other Sensitive Data

WithSecure DeepGuard 6 allows attackers to affect confidentiality, availability, and/or integrity.

**WithSecure™ Client Security**

Proven business protection and security for computers

1.  Home
2.  Solutions
3.  Software and services
4.  Business Suite
5.  Client Security

**Secure your business with the best in endpoint protection.**

**Client Security is much more than anti-malware – it offers next-gen protection elements such as threat intelligence, behavioral analysis and proactive protection against all the latest threats.**

Client Security is a business security product that offers you the best security for your business endpoints – continuously, year after year.

**Why WithSecure™ Client Security?**

Windows

**Award-winning**

Get award-winning, multi-layered security for desktops and laptops

**Protection engine**

Stay safe against zero-day vulnerabilities with DeepGuard, our proactive on-host protection engine

**Automatic patches**

Get centrally managed, automatic patches to your software to protect it against known vulnerabilities

**Performance**

Enjoy complete protection with minimal impact on system performance

**Automatically Augmented Security**

Enjoy automatically augmented security for online banking and other business-critical transactions

**Protection technologies**

Benefit from protection technologies powered by next-generation threat intelligence, advanced machine learning techniques, and highly skilled cyber security experts

Mac

**WithSecure Security Cloud**

Global protection against emerging threats within 60 seconds of initial detection

**Advanced anti-malware**

Anti-malware with real-time reputation checks for the latest threats

**Banking protection**

Provides added security for online banking

**Browsing protection**

Allows users to safely work and browse online without limiting them

**Firewall**

Utilizes Mac's own firewall to control incoming connections

“By achieving nearly 100% protection in all certification tests AV-Test performed in 2016, Client Security has proven to be a leader in protection of businesses.”

_Maik Morgenstern, CTO, AV-TEST GmbH_

**Your benefits**

Don't compromise on business security.

Client Security provides the best continuous protection available for Windows desktops and laptops. It is uniquely able to provide impenetrable protection against all online threats while minimizing the impact on system performance.

Endpoint protection is at the core of cyber security, and this is the best of the best. Complete endpoint protection is just the beginning. Client Security also saves you time with automatic patch management and boosts employee productivity with web browsing controls.

**1****No business downtimes**

No business downtime with the best, uncompromising, consistent security for desktops and laptops

**2****Application Control**

Avoid unsecure applications that put your business at risk with Application Control

**3****Web Content Control**

Work securely and productively with Web Content Control

**4****Connection Control**

Superior security for your business-critical work through automated Connection Control

**5****Software Updater**

Less opportunities for attackers with automated, up-to-date security with Software Updater

**Product features**

Standard

**Deepguard 6**

Behavior-based protection to keep your business safe against new and emerging threats

**Multi-engine Anti-malware**

Get unmatched protection against viruses, Trojans, rootkits, and other malware

**WithSecure Security Cloud**

Gain immediate protection against emerging threats discovered worldwide

**Browsing protection**

Ensure safe and efficient online work

**Advanced firewall**

Guard against malicious network activities

**Device control**

Prevent malware infections via USB

**Advanced protection**

Gain advanced protection against selected file types from unknown sites

**Botnet blocker**

Stop external control of compromised assets

Premium

**Connection control**

Prevent confidential information from being compromised

**Web content control**

Avoid legal risks and exposure to malicious content

**Patch management**

Automatic patch management for Windows operating system and third-party software

**Dataguard**

Provides additional protection against ransomware, and prevents the destruction and tampering of data

**Application control**

Blocks execution of applications and scripts according to rules created by our penetration testers, or as defined by the administrator

**Looking for product support?**

Find latest articles, instructions and other important support materials.

**Product details**

Malware and Spyware Protection

**Superior malware protection**

Our computer security component utilizes our multi-engine security platform to detect and prevent malware. It offers superior protection to traditional signature-based technologies:

*   Detects a broader range of malicious features, patterns and trends, enabling more reliable and accurate detections, even for previously unseen malware variants
*   By using real-time look-ups from the WithSecure Security Cloud, it can react faster to new and emerging threats in addition to ensuring a small footprint
*   Emulation enables detection of malware that utilize obfuscation techniques, and offers another layer of security before a file is run

DeepGuard 6

**Heuristic & behavior analysis**

DeepGuard combines some of our most advanced security technologies. It's the final and most critical layer of defense against new threats—even those that target previously unknown vulnerabilities.

DeepGuard observes application behavior and proactively intercepts any potentially harmful action on-the-fly before it causes damage. By switching the focus from signature characteristics to malicious behavior patterns, DeepGuard can identify and block malware even before a sample has been acquired and examined.

When an unknown or suspicious program is first launched, DeepGuard temporarily delays its execution in order to perform a file reputation and prevalence rate check, runs it in a sandbox environment, then finally executes it for behavioral analysis and exploit interception.

For more information about Deep Guard functions and benefits, consult our technical whitepaper.

**Compare the versions**

Choose the right version for your needs

Feature

Commad line endition

Full edition

Web-based GUI

 

X

Central control

 

X

Real-time scanning

 

X

Manual Scanning

X

X

Scheduled Scanning

X

X

Operated from the command line

X

 

Managed Firewall

**Better security and compatibility**

The new WithSecure firewall uses the default Windows rule engine to execute firewall rules. This greatly increases compatibility with other applications and appliances. The WithSecure expert ruleset, which contains advanced rules that counter risks such as propagating ransomware and lateral movement, is added on top of the standard Windows ruleset.

The administrator can extend the WithSecure rulesets with rules to tackle company and context-specific threats. Additionally, auto-selection rules allow administrators to define profiles adapted to the security needs of various networks.

Web Traffic Scanning

**Block malicious web content**

Web Traffic Protection prevents the exploitation of active content such as Java and Flash, which are used in the vast majority of online attacks. These components are automatically blocked on unknown and suspicious sites based on their reputation data. Administrators can make exceptions to this by adding sites to a trusted sites list, for example company intranet sites for which WithSecure does not have any reputation data.

Web Traffic Protection scans HTTP web traffic in real-time with multiple complementary anti-malware scanning engines and reputation checks. This ensures that malware and exploits are found and blocked at the traffic stage, before data is written to the hard disk. This provides additional protection against more advanced malware—for example the memory-only variety.

Browsing Protection

**Safe and efficient online work**

Browsing Protection ensures that employees can work safely and efficiently online without worries.

*   Proactively prevents employees from accessing harmful sites, links, and content
*   Eliminates human error and proactively minimizes exposure
*   Works with all major browsers

Botnet Blocker

**Repel botnets effectively**

Botnet Blocker stops criminals aiming to control compromised assets by preventing communication to Command & Control domains.

*   Administrators can prevent network activity relating to known botnets
*   Blocks Domain Name Server (DNS) queries on the host level
*   Can effectively stop most attacks, including ransomware and advanced persistent threats
*   Administrators can filter out queries based on domain reputation with the option of whitelisting them

Connection Control

**Elevated security for vital websites (Premium)**

Connection Control is a security layer that greatly increases protection for business-critical web activity like the use of intranets or sensitive cloud services like CRMs.

As soon as an employee accesses a website that requires additional security, Connection Control automatically elevates the security level for that session. During this period, Connection Control closes network connections to all unknown sites from the endpoint. Users can continue to use sites that are verified safe by WithSecure so as not to reduce employee productivity.

By blocking untrusted connections, banking trojans and other malware cannot send criminals confidential business information such as user credentials and cloud-based information. Security returns to normal when the specified browser process finishes or the user ends the session.

Patch Management

**Automatic patch management (Premium)**

Over 80% of cyber-attacks occur as a result of outdated software. Software Updater automatically keeps your third-party software and Windows up to date and patched against known vulnerabilities. Since it's integrated, you can easily avoid attacks based on known vulnerabilities.

*   Software Updater fully integrated in the solution, no infrastructure needed
*   Automatically patches OS and third-party, non-Microsoft applications
*   Automatically downloads and installs security patches, with a manual setting if needed

Learn more 

DataGuard

**WithSecure DataGuard (Premium)**

WithSecure DataGuard subjects selected high-risk and value-critical folders to advanced monitoring and additional detection logic. It makes them significantly more fortified against ransomware, and prevents malicious and unknown applications from destroying or tampering with the data that they contain. The high-risk and value-critical folders include, for example, the Downloads folder (web downloads), document folders, temp files (email attachments), and data repositories.

The feature's complementary detection logic significantly increases detection accuracy and aggressiveness against ransomware and their encryption processes. The Data Access module ensures that the data in these folders is not destroyed, tampered with, or encrypted by malicious or unknown applications, such as ransomware. Among other benefits, the Data Access module enables the recovery of data in the event of a successful ransomware attack, as it cannot encrypt the data located in those folders.

Application Control

**Prevent applications from executing (Premium)**

Application Control prevents threats from executing and running scripts, even if they bypass other security layers to get onto your device. This mitigates the risks posed by malicious, illegal, and unauthorized software in the corporate environment.

With Application Control you can:

*   Identify and control which applications are allowed to run in your environment
*   Identify trusted, authorized software automatically
*   Prevent all other applications, whether malicious, untrusted, or simply unwanted from running 
*   Eliminate unknown and unwanted applications in your environment to reduce complexity and risk
*   Monitor all applications running within the endpoint environment

Finally, you can use it to block applications from running scripts, for example:

*   Prevent all Microsoft Office applications from running PowerShell scripts
*   Prevent all Microsoft Office applications from running Batch scripts

Application control works based on rules created by our penetration testers that cover attack vectors used to breach into corporate environments. Alternatively, the administrator can define the rules based on various criteria, such as the application name or version.

**Compare the versions**

Choose the right version for your needs

Feature

Standard

Premium

Malware and Spyware Protection

X

X

DeepGuard 6

X

X

Managed Firewall

X

X

Web Traffic Scanning

X

X

Browsing Protection

X

X

Botnet Blocker

X

X

Web Content Control

 

X

Connection Control

 

X

Patch Management

 

X

DataGuard

 

X

Application Control

 

X

**Find an authorized reseller**

We partner with selected resellers to offer our security solutions.

Request a trial

**Request a trial**

Fill in the form and one of our dedicated security expert will reach out to help you get started with your trial.

Contact sales

CVE-2022-45871: Business Suite Virtual Security

Offensive security researchers found 63 previously unreported vulnerabilities in printers, phones, and network-attached storage devices in the Zero Day Initiative's latest hackathon.

Security researchers and hackers demonstrated 63 zero-day vulnerabilities in popular devices at the latest Pwn2Own, exploiting printers from Canon, HP, and Lexmark, and routers and network-attached storage device from Synology and Netgear.

According to Trend Micro's Zero Day Initiative (ZDI), which organized the competition last week, the collection of vulnerabilities earned $989,750 for the offensive cybersecurity specialists competing in the contest. While some attacks chained together a series of exploits to take control of the remote devices, including one that used five vulnerabilities, others found a single security weakness to target, such as the Pentest Limited team, which found a reliable single-click exploit in the Samsung Galaxy S22 mobile phone that required less than a minute to attack.

The Samsung exploit highlighted that significant vulnerabilities are out there to find, says Dustin Child, head of threat awareness at Trend Micro's Zero Day Initiative.

"Just click a link on an affected device and you get owned," he says. "It's a very reliable bug, too. Very impressive research and quite the effective demonstration of why clicking unknown links can be dangerous."

**Focusing on IoT and Mobile**

Pwn2Own started in 2007 as an annual contest connected with the annual CanSecWest conference, but has since branched out into two contests: one focused on computer operating systems and applications, and the other — which includes the latest contest — focused on devices and the Internet of Things.

Over the four days of the contest, offensive cybersecurity specialists discovered a significant number of vulnerabilities in printers and routers from major brands, but also targeted Bluetooth speakers and network-attached storage, ZDI stated in a summary of the contest results.

Because many of the devices are commonly used by small and medium-sized businesses (SMBs), companies should take the results of the competition as a warning, Child says.

"If anything, SMBs should understand that, while they may feel they aren't large enough to be a target, their devices can and will be targeted by threat actors," he says. "At \[this\] time, the attackers are just looking to add nodes to their botnet, but regardless of intent, the devices we rely on for business can be compromised if left undefended."

**Buffer Overflows Continue to Creep In**

Unfortunately, one of the classes of vulnerabilities that continues to represent a fertile field of exploitation for attackers is memory safety vulnerabilities, such as buffer overflows. While major software companies have begun using memory-safe programming languages to prevent memory-related issues, many device-makers are still behind the curve.

Many of the vulnerabilities discovered during the contest were buffer overflows, Child says.

"This form of memory corruption has been known for some time, so we were a bit surprised to see it still prevalent in multiple devices," he says.

Among the most targeted devices were printers, with Lexmark, HP, and Canon printers among those favored by participants. While routers also made up a significant share of targeted devices, they would have seen more abuse this year, except that last-minute patches from Netgear and TP-Link eliminated targeted weaknesses, forcing competitors to withdraw from the competition, Child says.

**Playing the Mario Theme on a Lexmark**

Some of the printer exploits showed additional creativity. In the past, hackers would settle for exploiting a system and forcing it to run Microsoft Paint or call up a calculator application as a demonstration of their potential to run arbitrary code. In the latest Pwn2Own, however, successful hackers displayed Pokemon or another anime character on the small printer control display. 

Perhaps most impressively, the Horizon3 AI team used the system alert sound on a Lexmark printer to play the theme from Mario, even though the device does not have that functionality.

"Since the printer doesn't have a speaker, we didn’t expect it to play a song, but they modulated the frequency of the beep to add the musical function," Child says.

Data management providers Synology and online giant Google both co-sponsored the contest.

Hackers Score Nearly $1M at Device-Focused Pwn2Own Contest

Threat actors leak employee email addresses, corporate reports, and IT asset information on a hacker forum after an attack on an Uber technology partner.

Uber has suffered yet another high-profile data leak that exposed sensitive employee and company data. This time, attackers breached the company by compromising an Amazon Web Services (AWS) cloud server used by a third party that provides Uber with asset management and tracking services.

The incident happened over the weekend, when a threat actor named "UberLeaks" began posting data they claimed was stolen from Uber and Uber Eats. The data turned up on the BreachForums hacking forum, the successor of now-defunct RaidForums, media outlets reported, and included employee email addresses, corporate reports, and IT asset information stolen.

Hackers posted a number of archives that they said are source-code associated with various mobile device management (MDM) platforms used by Uber, as well as by Uber Eats and third-party vendor services, according to reports. While no user information appears to have been compromised in the breach — which appears to entirely have affected corporate assets — the personal information of 77,000 Uber employees was leaked.

**Hacker Breaches Tequivity AWS Server **

Uber acknowledged the incident and pointed the media to a breach notification by a company called Tequivity, which it uses for asset management and tracking services.

Tequivity explained that "customer data was compromised" due to "unauthorized access" to the company's systems by "a malicious third party," according Tequivity's release. Specifically, attackers gained access to the company's AWS backup server, which houses code and data files related to Teqtivity customers, the company said.

It's unclear if that access was due to a misconfiguration of the cloud bucket, or if there was an actual compromise to blame.

Information exposed by the attack included information housed on various Uber employees' IT devices, including serial number, make, models, and technical specifications, as well as employee information, including first and last names, work email addresses, and work location details, according to Teqtivity.

Teqtivity has notified affected customers and is currently investigating as well as working to contain the incident, according to the notification. It's unclear if the breach affects other companies beyond Uber.

**Ongoing Security Issues**

This latest incident is indeed not Uber's first rodeo when it comes to data breaches, as the company has experienced several highly publicized incidents over the past several years that have had significant ramifications for the company.

In fact, a previous third-party breach that occurred in 2016 and exposed the data of some 57 million customers and drivers turned into an absolute public-relations nightmare for Uber, the effects of which are still being felt.

That incident — in which attackers also gained access to Uber data stored in third-party cloud storage — resulted in the firing of its now-former CISO Joe Sullivan after it was discovered that the company engaged in a cover-up of the incident. Sullivan was even found guilty in federal court on charges related to the incident in October.

Uber also experienced a significant breach in September and was forced to take some of its operations offline due to the compromise of its own internal systems, when an attacker socially engineered his way into an employee's VPN account before pivoting deeper into the network.

**Is the Lapsus$ Gang Responsible for the Uber Breach?**

While no particular threat group has claimed responsibility or has yet been found to be the guilty party behind the latest breach, there are some initial clues that tie the incident to the well-known cybercriminal extortion group Lapsus$.

The post on BreachForums about the Uber leak reportedly mentions the threat group, while Lapsus$ is believed to be responsible for the Uber September breach as well, Robert Ames, threat researcher from SecurityScorecard, tells Dark Reading.

Ames also notes the responsibility of Lapsus$ for a January incident at Okta, another "major third-party service for many firms," as a potential clue that the threat group also is at play here. That incident was determined to have affected about 366 Okta customers, the company acknowledged.

Lapsus$ went quiet around July after a spate of incidents earlier in the year including not only the one against Okta, but also attacks on Microsoft and Nvidia. Its responsibility for the September attack on Uber could be a sign of another flurry of activity from the threat group, experts say.

**Time to Manage Third-Party and Cloud Cybersecurity Risk**

No matter who's responsible, the latest Uber incident, like the one in 2016, once again highlights the third-party risk that all enterprises face when partner companies are responsible for or have access to corporate data and assets, security experts say.

A core issue is that many organizations don't secure third-party access to internal data in the same way they secure it within organization IT assets, which leaves that data unnecessarily exposed to outside threats, Ames says.

"Vendors and other third-parties are often granted the same access as employees but with fewer security measures, making them a weak link and therefore a popular target for threat actors," he says. "When hackers access a third party’s systems, they can access whatever data that system stores, even if it belongs to other organizations."

Indeed, this is an issue not unique to Uber, but one that demonstrates that "companies everywhere must better prioritize their cybersecurity measures," especially when it comes to third parties, Stephan Chenette, co-founder and CTO at AttackIQ, says.

Some ways companies can do this include mapping organizational capabilities and security controls to specific attack scenarios to measure their preparedness to detect, prevent, and respond to these threats, he says.

"They should also continuously evaluate their existing security controls to uncover gaps before a hacker finds and exploits any weaknesses," Chenette says.

Enterprises also should be continuously monitoring their specific third-party cybersecurity posture to reduce the likelihood of attacks, Ames says. This will help give them a more complete picture of their entire attack surface as they seek ways to gain visibility into potential and existing vulnerabilities.

Ames adds that participating in tabletop exercises and threat emulation to ensure that security administrators and employees alike are familiar with countering and responding to threat actors also can help organizations better respond to third-party threats.

Uber Breached, Again, After Attackers Compromise Third-Party Cloud

By Owais Sultan
Artificial intelligence (AI) tools are dramatically transforming the way we work. As AI applications get more sophisticated, the…
This is a post from HackRead.com Read the original post: How AI-Powered Tools Can Spark Creativity and Help You Create Designs

Artificial intelligence (**AI**) tools are dramatically transforming the way we work. As AI applications get more sophisticated, the results they generate are better, more compelling, and more accurate. Such tools can be incredibly useful to those looking for inspiration and innovation. They are a great way to inspire your creativity and generate designs.

**How AI Works for Design**

Artificial intelligence includes **machine learning** technologies, which are applications where the algorithms evolve and improve over time. As AI applications are exposed to more data and feedback, the programs can deliver better, more effective solutions.

AI also includes deep learning, a field where algorithms are designed to mimic the complexity of the brain by building artificial neural networks. It uses a multilayered approach to dissect and use data to gain deeper insights and deliver more complex solutions.

Other AI applications include virtual reality, augmented reality, and mixed realities.

AI design tools will not be replacing graphic designers and other creative roles anytime soon. However, they can create solutions quickly and, over time, more accurately or representative of the ideas and instructions provided.

In some cases, website designers and other artists may be able to use AI-generated products directly. In other cases, AI solutions can act as a source of inspiration to drive ideas.

**AI tools** can provide explanations and reasons for why a suggested solution varies from the norm. By providing more alternatives, AI is opening up the world of possibilities for those that rely on content – especially visual and written – to complete projects such as websites, logos, copy, color schemes, and messaging.

AI’s impact on the design industry will be profound. Image generation will become better and faster, image cleanup will be easier, from photo editing to background removal, and more people will be able to create their creative elements.

**Online Tools Already Empowering Design Work**

There has been a boom lately in the development of AI-powered design tools. Many of these online solutions are free (for now) and can be used by artists and other creatives to help in the creative process. Here is a closer look at some of the options available and how they work.

**Art Generators**

AI-generated art tools are widely available on the web. Like other AI technologies, they provide rights-free access to computer-generated content. As a supplemental tool for inspiration, problem-solving, and ideation, these art generators provide ever-improving algorithms. Using the tools lets users experiment and see what the technologies can produce, choosing whether to use them, enhance them or change the parameters and start again.

Painters, illustrators, and graphic designers can use art generators to help them get the creative juices going. Others can license the creations to sell as NFTs or other products.

Take Hotpot.ai, for example. You can use their **art generator** tool to create images, paintings illustrations, and other graphic renderings. The tool is free to use and uses a text-to-image interface.

Users enter a few descriptive words in and the tool starts working. There is a basic free version that creates a downloadable png of the creation in just a few minutes. There’s also the option of buying credits that allow you to license the images rendered. A premium version allows for faster creation, larger and custom sizes,, and commercial use of the products.

Hotpot has a wide range of available tools, including a background remover, picture restorer, copywriting, songwriting, social media graphics, and gaming tools.

**Sentence or Text Generators**

Are you struggling to find the right way to express an idea or concept? A copy generator can help express ideas by suggesting words, phrases, sentences, or more extensive pieces of writing.

**Copy.ai** enables writers, agency professionals, product managers, and others to use their copywriting generators to create a vast array of content types, including blogs, case studies, emails, paid ads, social media posts, and website copy.

In seconds, you can have crisp, easy-to-read, well-constructed content for use in various applications. It can be used to generate large, complex copies or rewrite stubborn paragraphs. A Pro version unlocks more features.

**Logo Generators**

If you need a new or revised logo for your business or organization, there are multiple tools available that with just a small amount of input on your part can generate options.

These tools are intuitive and easy to manage, with no design expertise required.

Take **Tailor Brands**, for example. This is an online platform that helps you launch a business, establish your brand identity, and create your branding elements. You can use its logo generator freely to create logos and build a brand that can be used in multiple applications. 

After entering a few details such as your business name and answering a couple of questions, the tool generates multiple logo options within seconds. You can then make some tweaks to customize the suggestions.

While logo tools usually require a purchase, many free elements can serve as an inspiration and help your design process, and can also be manipulated by a designer later on.

**Other Tools**

Here is a brief look at some other types of AI design functions:

*   **Fontjoy.com** bills itself as a font pairing tool. It helps you generate pairs of fonts that work well in tandem, solving a classic design problem. All too often, designers need to find the right combination of fonts that complement each other and serve the right functional purpose on the page or screen. For each font you choose, you can see a listing of all fonts from most to least similar and use a slider to change the degree of contrast for the selection, from “high contrast” to “very similar.” The screen displays the two fonts as header and subheader and allows you to change selections to experiment
*   **Khroma.co** lets you create a personalized color generator algorithm that can be used to help you choose color combinations you like for projects. You start by selecting 50 colors you like (the site recommends selecting a variety of values, saturations, and hues). It uses those colors as a baseline that develops and trains an algorithm that provides you with options of color matches, along with the hexadecimal and RGB codes and
*   The name says it all with **ThisPersonDoesNotExist.com**. The site shows a hyper-realistic, large image of a headshot of a “person” that’s been passed as a real person. The technology, called GAN (generative adversarial networks), allows users to copy the images for use as stock photos in various ways. If you refresh the page, a new image appears. The site also has links to similar pages for GAN-generated art, cats, chemicals, and horses.

**Conclusion **

As **AI tools** become more sophisticated, so too will the applications. The whole intent of artificial intelligence is that the algorithms learn and improve as they create more products and are fed more information from users.

For designers, these tools can help when the mind is stuck or needs inspiration to move forward. They are powerful solutions to add to the arsenal of any creative professional looking to broaden perspectives, leverage technologies, and be inspired.

1.  **Fields of application of artificial intelligence**
2.  **AI-based Model to Predict Extreme Wildfire Danger**
3.  **How Artificial intelligence (AI) Stops Cybercriminals**
4.  **Microsoft patent reveals chatbot to talk to dead people**
5.  **AI-Powered Glasses Give Deaf People Power of Speech**

How AI-Powered Tools Can Spark Creativity and Help You Create Designs

A remote code execution vulnerability exists when Microsoft .NET Framework fails to properly validate input before loading libraries. An attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

To exploit the vulnerability, an attacker would first need to access the local system with the ability to execute a malicious application.

The security update addresses the vulnerability by correcting how .NET validates input on library load.

CVE-ID

Learn more at National Vulnerability Database (NVD)

• CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information

Description

.NET Framework Remote Code Execution Vulnerability.

References

**Note:** References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.

*   MISC:https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41089
*   URL:https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41089

Assigning CNA

Microsoft Corporation

Date Record Created

**20220919**

Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.

Phase (Legacy)

Assigned (20220919)

Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)

N/A

This is a record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.

Search CVE Using Keywords:  

You can also search by reference using the CVE Reference Maps.

For More Information:  CVE Request Web Form (select "Other" from dropdown)

Tag

#microsoft