‘Wormable’ Flaw Leads January 2022 Patch Tuesday

Credit to Author: BrianKrebs| Date: Tue, 11 Jan 2022 22:18:55 +0000

Microsoft today released updates to plug nearly 120 security holes in Windows and supported software. Six of the vulnerabilities were publicly detailed already, potentially giving attackers a head start in figuring out how to exploit them in unpatched systems. More concerning, Microsoft warns that one of the flaws fixed this month is “wormable,” meaning no human interaction would be required for an attack to spread from one vulnerable Windows box to another.

Read more

[updated] Patch now! Microsoft plugs actively exploited zero-days and other updates

Credit to Author: Pieter Arntz| Date: Wed, 10 Nov 2021 14:30:23 +0000

Another Patch Tuesday has come around, and while it may seem as a calm one for a change, there is enough to patch and update.

Categories: Exploits and vulnerabilities

Tags:

(Read more…)

The post [updated] Patch now! Microsoft plugs actively exploited zero-days and other updates appeared first on Malwarebytes Labs.

Read more

Patch now! Microsoft plugs actively exploited zero-days and other updates

Credit to Author: Pieter Arntz| Date: Wed, 10 Nov 2021 14:30:23 +0000

Another Patch Tuesday has come around, and while it may seem as a calm one for a change, there is enough to patch and update.

Categories: Exploits and vulnerabilities

Tags:

(Read more…)

The post Patch now! Microsoft plugs actively exploited zero-days and other updates appeared first on Malwarebytes Labs.

Read more

Four in-the-wild exploits, 13 critical patches headline bumper Patch Tuesday

Credit to Author: Pieter Arntz| Date: Wed, 14 Jul 2021 11:56:06 +0000

Looking at the urgency levels Microsoft has assigned to this month’s patches, sysadmins have their work cut out for them once again.

Categories: Exploits and vulnerabilities

Tags:

(Read more…)

The post Four in-the-wild exploits, 13 critical patches headline bumper Patch Tuesday appeared first on Malwarebytes Labs.

Read more

Panoply of critical patches in July updates require quick action

Credit to Author: Andrew Brandt| Date: Tue, 13 Jul 2021 17:31:56 +0000

More than 40 remote code execution bugs get squished – and not a moment too soon<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/Y6yYBAHH_6k” height=”1″ width=”1″ alt=””/>

Read more

Analyzing attacks taking advantage of the Exchange Server vulnerabilities

Credit to Author: Eric Avena| Date: Thu, 25 Mar 2021 21:21:07 +0000

Microsoft continues to monitor and investigate attacks exploiting the recent on-premises Exchange Server vulnerabilities. As organizations recover from this incident, we continue to publish guidance and share threat intelligence to help detect and evict threat actors from affected environments.

The post Analyzing attacks taking advantage of the Exchange Server vulnerabilities appeared first on Microsoft Security.

Read more

Automatic on-premises Exchange Server mitigation now in Microsoft Defender Antivirus

Credit to Author: Eric Avena| Date: Thu, 18 Mar 2021 22:00:47 +0000

Microsoft Defender Antivirus and System Center Endpoint Protection will automatically mitigate CVE-2021-26855 on any vulnerable Exchange Server on which it is deployed. We have taken this additional step to further support our customers who are still vulnerable and have not yet implemented the complete security update.

The post Automatic on-premises Exchange Server mitigation now in Microsoft Defender Antivirus appeared first on Microsoft Security.

Read more

MTR in Real-Time: Exchange ProxyLogon Edition

Credit to Author: Michael Heller| Date: Wed, 17 Mar 2021 16:32:29 +0000

The recently reported collection of Microsoft Exchange Server zero-day vulnerabilities has rocked the infosec world, impacting tens of thousands of organizations around the world, with some estimates exceeding 100,000 and growing by the day. The exploitations seen in the wild were first attributed to a nation state actor dubbed Hafnium, but the vulnerabilities and attacks [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/GdZsNVuZwSw” height=”1″ width=”1″ alt=””/>

Read more