windows – Page 12 – Computer Security Articles

Credit to Author: Greg Lambert| Date: Sat, 13 Aug 2022 04:58:00 -0700

Microsoft’s August Patch Tuesday release addresses 123 security issues in Microsoft Windows, Office, Exchange (it’s back!) and Visual Studio — and unfortunately, we have two zero-days with reports of active exploitation in the wild. Since this is a broad update, it will require planning and testing before deployment.

The first (CVE-2022-34713) occurs in the Windows diagnostic tools and the second (CVE-2022-30134) affects Microsoft Exchange. Basically, the holidays are over and it’s time to pay attention to Microsoft updates again. We have made “Patch Now” recommendations for Windows, Exchange and Adobe for this month.

To read this article in full, please click here

Kaspersky Security

DogWalk and several vulnerabilities in Exchange | Kaspersky official blog

August 10, 2022 admin 0days, Business, enterprise, Exchange, microsoft, RCE, SMB, vulnerabilities, windows

Credit to Author: Editorial Team| Date: Wed, 10 Aug 2022 17:05:08 +0000

This Tuesday Microsoft released new patches that fixe DogWalk vulnerability (CVE-2022-34713) and several dangerous bugs in Exchange.

ComputerWorld Independent

Microsoft urges Windows users to run patch for DogWalk zero-day exploit

August 10, 2022 admin Security, small and medium business, windows

Credit to Author: Charlotte Trueman| Date: Wed, 10 Aug 2022 07:37:00 -0700

Microsoft has confirmed that a high-severity, zero-day security vulnerability is actively being exploited by threat actors and is advising all Windows and Windows Server users to apply its latest monthly Patch Tuesday update as soon as possible.

The vulnerability, known as CVE-2022-34713 or DogWalk, allows attackers to exploit a weakness in the Windows Microsoft Support Diagnostic Tool (MSDT). By using social engineering or phishing, attackers can trick users into visiting a fake website or opening a malicious document or file and ultimately gain remote code execution on compromised systems.

To read this article in full, please click here

ComputerWorld Independent

How to protect Windows 10 and 11 PCs from ransomware

August 2, 2022 admin Security, small and medium business, windows, Windows 10, windows 11

Credit to Author: Preston Gralla| Date: Tue, 02 Aug 2022 03:00:00 -0700

CryptoLocker. WannaCry. DarkSide. Conti. MedusaLocker. The ransomware threat isn’t going away anytime soon; the news brings constant reports of new waves of this pernicious type of malware washing across the world. It’s popular in large part because of the immediate financial payoff for attackers: It works by encrypting the files on your hard disk, then demands that you pay a ransom, frequently in Bitcoin or other cryptocurrency, to decrypt them.

But you needn’t be a victim. There’s plenty that Windows 10 and 11 users can do to protect themselves against it. In this article, I’ll show you how to keep yourself safe, including how to use an anti-ransomware tool built into Windows.

To read this article in full, please click here

MalwareBytes Security

Microsoft clamps down on RDP brute-force attacks in Windows 11

July 26, 2022 admin cybercrime, ransomware, rate limit, RDP, Remote Desktop Protocol, windows, windows 11

Credit to Author: Christopher Boyd| Date: Tue, 26 Jul 2022 15:37:05 +0000

Microsoft is taking RDP attacks to task in Windows 11, with default lockdowns for too many incorrect passwords entered.

The post Microsoft clamps down on RDP brute-force attacks in Windows 11 appeared first on Malwarebytes Labs.

ComputerWorld Independent

For SMBs, Microsoft offers a new layer of server protection

July 25, 2022 admin microsoft, Security, small and medium business, windows

Credit to Author: Susan Bradley| Date: Mon, 25 Jul 2022 09:00:00 -0700

Do you run a small business with on-premises servers?

Chances are, you rely on technology that includes servers, whether they’re Windows- or Linux-based. With that in mind, Microsoft recently announced it’s previewing “server protection for small business” — bundling the offering with Microsoft Defender for Business.

This is noteworthy because until now, most Endpoint Detection and Response (EDR) solutions have been expensive and typically only deployed by larger enterprises. (EDR is an integrated, layered approach to endpoint protection that combines real-time continuous monitoring and endpoint data analytics with rule-based automated response.)

To read this article in full, please click here

Kaspersky Security

Luna and Black Basta cross-platform ransomware | Kaspersky official blog

July 20, 2022 admin Business, enterprise, linux, ransomware, SMB, Threats, windows

Credit to Author: Julia Glazova| Date: Wed, 20 Jul 2022 09:39:27 +0000

Kaspersky experts analyzed the new Luna and Black Basta cross-platform ransomware for Windows, Linux and ESXi.

ComputerWorld Independent

With a light July Patch Tuesday, it's time to invest in your IT processes

July 15, 2022 admin microsoft, Security, small and medium business, windows

Credit to Author: Greg Lambert| Date: Fri, 15 Jul 2022 12:04:00 -0700

Though we get a reprieve from Exchange updates in this month’s Patch Tuesday update, more printer updates are on the way. Even with no updates for Microsoft Exchange or Visual Studio, Adobe is back with 15 critical updates for Adobe Reader. And Microsoft’s new patch deployment tool Auto-Patch is now live. (I always thought application testing was the main problem here, but actually getting patches deployed is still tough.)

Though the numbers are still quite high (with 86+ reported vulnerabilities), the testing and deployment profile for July should be fairly moderate. We suggest taking the time to harden your Exchange Server defenses and mitigation processes, and invest in your testing processes.

To read this article in full, please click here