windows – Computer Security Articles

Credit to Author: David Weston| Date: Fri, 11 Oct 2024 17:00:00 +0000

Kerberoasting, a well-known Active Directory (AD) attack vector, enables threat actors to steal credentials and navigate through devices and networks. Microsoft is sharing recommended actions administrators can take now to help prevent successful Kerberoasting cyberattacks.

The post Microsoft’s guidance to help mitigate Kerberoasting appeared first on Microsoft Security Blog.

Security Sophos

October Patch Tuesday harvest hauls in 117 CVEs

October 8, 2024 admin deepspeed, Featured, Patch Tuesday, threat research, windows

Credit to Author: Angela Gunn| Date: Wed, 09 Oct 2024 05:40:24 +0000

Bumper crop of Windows vulns leads the way; 15 product groups represented

Microsoft Security

Chained for attack: OpenVPN vulnerabilities discovered leading to RCE and LPE

August 14, 2024 admin Android, MacOS, windows

Credit to Author: Microsoft Threat Intelligence| Date: Thu, 08 Aug 2024 18:00:00 +0000

Microsoft researchers found multiple vulnerabilities in OpenVPN that could lead to an attack chain allowing remote code execution and local privilege escalation. This attack chain could enable attackers to gain full control over targeted endpoints, potentially resulting in data breaches, system compromise, and unauthorized access to sensitive information.

The post Chained for attack: OpenVPN vulnerabilities discovered leading to RCE and LPE appeared first on Microsoft Security Blog.

Kaspersky Security

Global outage of Microsoft clients due to CrowdStrike update | Kaspersky official blog

July 19, 2024 admin Azure, Business, driver, enterprise, failure, microsoft, SMB, Threats, Tips, Updates, windows

Credit to Author: Kaspersky Team| Date: Fri, 19 Jul 2024 14:54:16 +0000

The CrowdStrike EDR driver update has affected airports, banks and stores around the world.

Kaspersky Security

Zero-day vulnerability in Internet Explorer | Kaspersky official blog

July 16, 2024 admin Browsers, Business, enterprise, Exploits, Internet Explorer, microsoft, password theft, SMB, Threats, Updates, vulnerabilities, windows

Credit to Author: Alanna Titterington| Date: Tue, 16 Jul 2024 11:47:34 +0000

As part of Patch Tuesday, Microsoft closed a zero-day vulnerability in Internet Explorer that had been exploited to steal passwords for 18 months.

Security Sophos

July Patch Tuesday Unleashes a Torrent of Updates

July 9, 2024 admin Azure, database, dynamics365, EoP, microsoft, microsoft sql server, ms-sql, office365, Patch Tuesday, people rating, RCE, sophos x-ops, SQL Server, threat research, windows

Credit to Author: Andrew Brandt| Date: Tue, 09 Jul 2024 18:05:32 +0000

Microsoft fixes 138 bugs in Windows and other products this month

Security Sophos

June Patch Tuesday squares up with 49 patches

June 11, 2024 admin cve-2024-30080, cve-2024-37325, cve-2024-50868, Featured, Patch Tuesday, sophos x-ops, threat research, windows

Credit to Author: Angela Gunn| Date: Wed, 12 Jun 2024 01:21:01 +0000

Just one critical-severity issue addressed, but don’t sleep on an industry-wide DNS issue

Independent Krebs

Patch Tuesday, June 2024 “Recall” Edition

June 11, 2024 admin adam barnett, copilot, cve-2004-30080, cve-2024-30078, immersive labs, kevin beaumont, kevin breen, Mastodon, microsoft message queuing, microsoft patch tuesday june 2024, Patrick Gray, Rapid7, Recall, Risky Business podcast, Time to Patch, windows, windows wifi driver

Credit to Author: BrianKrebs| Date: Tue, 11 Jun 2024 22:57:35 +0000

Microsoft today released updates to fix more than 50 security vulnerabilities in Windows and related software, a relatively light Patch Tuesday this month for Windows administrators. The software giant also responded to a torrent of negative feedback on a new feature of Redmond’s flagship operating system that constantly takes screenshots of whatever users are doing on their computers, saying the feature would no longer be enabled by default.

← Previous