Tenable – Page 2 – Computer Security Articles

Microsoft Patch Tuesday, January 2023 Edition

January 10, 2023 admin cve-2023-21563, cve-2023-21674, cve-2023-21678, cve-2023-21743, cve-2023-21745, cve-2023-21762, dustin childs, Latest Warnings, microsoft bitlocker, Satnam Narang, Security Tools, Tenable, Time to Patch

Credit to Author: BrianKrebs| Date: Tue, 10 Jan 2023 22:28:55 +0000

Microsoft today released updates to fix nearly 100 security flaws in its Windows operating systems and other software. Highlights from the first Patch Tuesday of 2023 include a zero-day vulnerability in Windows, printer software flaws reported by the U.S. National Security Agency, and a critical Microsoft SharePoint Server bug that allows a remote, unauthenticated attacker to make an anonymous connection.

Independent Krebs

Patch Tuesday, November 2022 Election Edition

November 8, 2022 admin askwoody, cve-2022-41073, cve-2022-41080, cve-2022-41082, cve-2022-41091, cve-2022-41125, cve-2022-41128, immersive labs, kevin breen, microsoft, microsoft patch tuesday november 2022, sans internet storm center, Satnam Narang, Tenable, Time to Patch, windows, windows print spooler

Credit to Author: BrianKrebs| Date: Wed, 09 Nov 2022 01:50:14 +0000

Let’s face it: Having “2022 election” in the headline above is probably the only reason anyone might read this story today. Still, while most of us here in the United States are anxiously awaiting the results of how well we’ve patched our Democracy, it seems fitting that Microsoft Corp. today released gobs of security patches for its ubiquitous Windows operating systems. November’s patch batch includes fixes for a whopping six zero-day security vulnerabilities that miscreants and malware are already exploiting in the wild.

Independent Krebs

Microsoft Patch Tuesday, October 2022 Edition

October 11, 2022 admin caitlin condon, cve-2022-37968, cve-2022-41033, immersive labs, kevin breen, Latest Warnings, microsoft patch tuesday october 2022, Rapid7, Satnam Narang, Tenable, Time to Patch

Credit to Author: BrianKrebs| Date: Tue, 11 Oct 2022 21:06:23 +0000

Microsoft today released updates to fix at least 85 security holes in its Windows operating systems and related software, including a new zero-day vulnerability in all supported versions of Windows that is being actively exploited. However, noticeably absent from this month’s Patch Tuesday are any updates to address a pair of zero-day flaws being exploited this past month in Microsoft Exchange Server.

Independent Krebs

Microsoft Patch Tuesday, July 2022 Edition

July 12, 2022 admin cve-2022-22022, cve-2022-22029, cve-2022-22038, cve-2022-22039, cve-2022-22041, cve-2022-22047, cve-2022-30206, cve-2022-30221, cve-2022-30226, Dan Goodin, Greg Wiseman, immersive labs, kevin breen, microsoft patch tuesday july 2022, Rapid7, Security Tools, sergiu gatlan, Tenable, Time to Patch

Credit to Author: BrianKrebs| Date: Wed, 13 Jul 2022 01:02:49 +0000

Microsoft today released updates to fix at least 86 security vulnerabilities in its Windows operating systems and other software, including a weakness in all supported versions of Windows that Microsoft warns is actively being exploited. The software giant also has made a controversial decision to put the brakes on a plan to block macros in Office documents downloaded from the Internet.

Independent Krebs

Microsoft Patch Tuesday, June 2022 Edition

June 14, 2022 admin amit yoran, azure synapse, cve-2022-30190, follina, kevin beaumont, mayuresh dani, microsoft patch tuesday june 2022, microsoft support diagnostics tool, msdt, orca security, Tenable, Time to Patch, trend micro zero day initiative

Credit to Author: BrianKrebs| Date: Wed, 15 Jun 2022 04:52:30 +0000

Microsoft on Tuesday released software updates to fix 60 security vulnerabilities in its Windows operating systems and other software, including a zero-day flaw in all supported Microsoft Office versions on all flavors of Windows that’s seen active exploitation for at least two months now. On a lighter note, Microsoft is officially retiring its Internet Explorer (IE) web browser, which turns 27 years old this year.

Independent Krebs

Microsoft Patch Tuesday, May 2022 Edition

May 10, 2022 admin adobe, cve-2022-26925, cve-2022-26937, dustin childs, Greg Wiseman, local security authortity, microsoft patch tuesday may 2022, petitpotam, Rapid7, Satnam Narang, Tenable, Time to Patch, trend micro zero day initiative, windows print spooler

Credit to Author: BrianKrebs| Date: Wed, 11 May 2022 02:34:59 +0000

Microsoft today released updates to fix at least 74 separate security problems in its Windows operating systems and related software. This month’s patch batch includes fixes for seven “critical” flaws, as well as a zero-day vulnerability that affects all supported versions of Windows.

Independent Krebs

The Original APT: Advanced Persistent Teenagers

April 6, 2022 admin A Little Sunshine, advanced persistent teenagers, amit yoran, APT, cisa, FBI, lapsus$, microsoft, Ne'er-Do-Well News, nvidia, Okta, Samsung, Tenable, The Coming Storm, twitter hack, vishing, voice phishing, wired

Credit to Author: BrianKrebs| Date: Wed, 06 Apr 2022 17:55:38 +0000

Many organizations are already struggling to combat cybersecurity threats from ransomware purveyors and state-sponsored hacking groups, both of which tend to take days or weeks to pivot from an opportunistic malware infection to a full blown data breach. But few organizations have a playbook for responding to the kinds of virtual “smash and grab” attacks we’ve seen recently from LAPSUS$, a juvenile data extortion group whose short-lived, low-tech and remarkably effective tactics are putting some of the world’s biggest corporations on edge.

Independent Krebs

‘Wormable’ Flaw Leads January 2022 Patch Tuesday

February 2, 2022 admin cve-2021-22947, cve-2021-36976, cve-2022-21846, cve-2022-21907, dustin childs, Exchange Server, http protocol stack, Latest Warnings, microsoft patch tuesday january 2022, national security agency, Rapid7, Satnam Narang, Tenable, The Coming Storm, Time to Patch, Trend Micro, Zero Day Initiative

Credit to Author: BrianKrebs| Date: Tue, 11 Jan 2022 22:18:55 +0000

Microsoft today released updates to plug nearly 120 security holes in Windows and supported software. Six of the vulnerabilities were publicly detailed already, potentially giving attackers a head start in figuring out how to exploit them in unpatched systems. More concerning, Microsoft warns that one of the flaws fixed this month is “wormable,” meaning no human interaction would be required for an attack to spread from one vulnerable Windows box to another.