Microsoft: Happy 2025. Here’s 161 Security Updates

Credit to Author: BrianKrebs| Date: Tue, 14 Jan 2025 22:50:00 +0000

Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three “zero-day” weaknesses that are already under active attack. Redmond’s inaugural Patch Tuesday of 2025 bundles more fixes than the company has shipped in one go since 2017.

Read more

Windows Hello for Business: Passwordless authentication for Windows shops

Microsoft is trying to get rid of that sticky note that you see taped to everyone’s office monitor. You know, the one with the password on it. The one with all of the old passwords crossed off one by one, each one subtly different from the last — an exclamation point turning into an ampersand, a one into a two.

Enterprises have really done this to themselves. The passwords that most organizations require — which have to be complex, with long strings of numbers and specially cased phrases with some (but not all! heavens no, not the one you want) symbols — are difficult to remember. There’s no hope except to write them down. Then you have to reset them every so often. Then they get recycled. And on and on the cycle goes.

To read this article in full, please click here

Read more

Update now! WinRAR files can be abused to run malware

Categories: Exploits and vulnerabilities

Categories: News

Tags: WinRAR

Tags: CVE-2023-40477

Tags: RCE

Tags: Windows 11

A new version of WinRAR is available that patches two vulnerabilities attackers could use for remote code execution.

(Read more…)

The post Update now! WinRAR files can be abused to run malware appeared first on Malwarebytes Labs.

Read more

Windows 11 is showing its first signs of Rust

Categories: News

Tags: Windows 11

Tags: OS

Tags: operating system

Tags: programming language

Tags: rust

Tags: C

Tags: C++

Tags: kernel

Tags: buffer overflow

We take a look at the slow introduction of programming language Rust into the Windows 11 kernel in an effort to make it more memory safe.

(Read more…)

The post Windows 11 is showing its first signs of Rust appeared first on Malwarebytes Labs.

Read more

Ransomware as a service? Windows users can still fight back.

Ransomware.

It’s one word that can strike a chill in anyone from a corporate C-suite to a home user. It’s sometimes hard to get a feel for the overall ransomware industry (and yes, it’s now an industry). But based on anecdotal reviews of forums and social media, it appears as though attacks against individuals are slowing. I no longer see people report they’ve been hit by ransomware on their PCs.

But it may be that attackers have realized that going after “one-off” targets isn’t the best business plan. In fact, in a recent Microsoft Secure online seminar (registration required), Jessica Payne and Geoff McDonald discuss how ransomware is now a big business, offered as a service by those who sell access to compromised networks to others.

To read this article in full, please click here

Read more

How to protect your privacy in Windows 11

From the moment Microsoft released Windows 10 in 2015, the new OS came under fire for the amount of private information it gathered from users by default. Over the years, the vendor gradually introduced changes to Windows 10 that alleviated some of those privacy concerns, but some remain — and most of those apply to Windows 11 as well.

Whether you think Windows 11 crosses the privacy line or just want to safeguard as much of your personal life as possible, we’re here to help. Here’s how to protect your privacy in just a few minutes.

To read this article in full, please click here

Read more