December Patch Tuesday arrives bearing 71 gifts
Credit to Author: Angela Gunn| Date: Wed, 11 Dec 2024 08:00:38 +0000
Seventeen Critical-severity CVEs ready to deck your halls; also, new blog guidance for Windows Server admins
Read morewindows
Microsoft’s guidance to help mitigate Kerberoasting
Credit to Author: David Weston| Date: Fri, 11 Oct 2024 17:00:00 +0000
Kerberoasting, a well-known Active Directory (AD) attack vector, enables threat actors to steal credentials and navigate through devices and networks. Microsoft is sharing recommended actions administrators can take now to help prevent successful Kerberoasting cyberattacks.
The post Microsoft’s guidance to help mitigate Kerberoasting appeared first on Microsoft Security Blog.
Read moreOctober Patch Tuesday harvest hauls in 117 CVEs
Credit to Author: Angela Gunn| Date: Wed, 09 Oct 2024 05:40:24 +0000
Bumper crop of Windows vulns leads the way; 15 product groups represented
Read moreChained for attack: OpenVPN vulnerabilities discovered leading to RCE and LPE
Credit to Author: Microsoft Threat Intelligence| Date: Thu, 08 Aug 2024 18:00:00 +0000
Microsoft researchers found multiple vulnerabilities in OpenVPN that could lead to an attack chain allowing remote code execution and local privilege escalation. This attack chain could enable attackers to gain full control over targeted endpoints, potentially resulting in data breaches, system compromise, and unauthorized access to sensitive information.
The post Chained for attack: OpenVPN vulnerabilities discovered leading to RCE and LPE appeared first on Microsoft Security Blog.
Read moreGlobal outage of Microsoft clients due to CrowdStrike update | Kaspersky official blog
Credit to Author: Kaspersky Team| Date: Fri, 19 Jul 2024 14:54:16 +0000
The CrowdStrike EDR driver update has affected airports, banks and stores around the world.
Read moreZero-day vulnerability in Internet Explorer | Kaspersky official blog
Credit to Author: Alanna Titterington| Date: Tue, 16 Jul 2024 11:47:34 +0000
As part of Patch Tuesday, Microsoft closed a zero-day vulnerability in Internet Explorer that had been exploited to steal passwords for 18 months.
Read moreJuly Patch Tuesday Unleashes a Torrent of Updates
Credit to Author: Andrew Brandt| Date: Tue, 09 Jul 2024 18:05:32 +0000
Microsoft fixes 138 bugs in Windows and other products this month
Read moreJune Patch Tuesday squares up with 49 patches
Credit to Author: Angela Gunn| Date: Wed, 12 Jun 2024 01:21:01 +0000
Just one critical-severity issue addressed, but don’t sleep on an industry-wide DNS issue
Read more