Frag out: four remote attack bugs fixed in Microsoft’s February Patch Tuesday

Credit to Author: SophosLabs Offensive Security| Date: Tue, 09 Feb 2021 18:00:44 +0000

Three TCP/IP bugs and a flaw in Microsoft’s DNS server could be leveraged to crash systems or remotely execute code.<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/30dpZid3RTM” height=”1″ width=”1″ alt=””/>

Read more

First Patch Tuesday of 2021 brings fix to Windows Defender bug already being exploited

Credit to Author: gallagherseanm| Date: Tue, 12 Jan 2021 18:00:09 +0000

Remote code execution vulnerability in Windows’ built-in malware protection allows an attacker to execute code when a crafted file is scanned—one of seven critical bugs addressed in Microsoft’s January fix release.<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/gkqUXXvRz9I” height=”1″ width=”1″ alt=””/>

Read more

How SunBurst malware does defense evasion

Credit to Author: sophoslabsbehavioural| Date: Mon, 21 Dec 2020 17:00:45 +0000

In an effort that has been attributed by many to actors working for or on behalf of a national government, an unknown adversary compromised the software supply chain of the enterprise IT management firm SolarWinds in order to distribute malicious code. The success of that attack, dubbed Sunburst, gave the actors wide-ranging access to corporate [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/uszGQKkVDzo” height=”1″ width=”1″ alt=””/>

Read more