March-April 2018 test results: More insights into industry AV tests

Credit to Author: Windows Defender ATP| Date: Fri, 20 Jul 2018 19:30:38 +0000

In a previous post, in the spirit of our commitment to delivering industry-leading protection, customer choice, and transparency on the quality of our solutions, we shared insights and context into the results of AV-TESTs January-February 2018 test cycle. We released a transparency report to help our customers and the broader security community to stay informed

Read more

Read more

Microsoft dives down a bizarre non-cumulative rabbit hole with July patches

Credit to Author: Woody Leonhard| Date: Fri, 20 Jul 2018 09:02:00 -0700

Read more

Stung by a festering pile of bugs on Patch Tuesday, MS releases 27 more patches

Credit to Author: Woody Leonhard| Date: Tue, 17 Jul 2018 09:21:00 -0700

In what is becoming a common occurrence, Microsoft’s Patch Tuesday brought along so many bugs that they necessitated a remediation round. This month, unusually, it took only six days to get the exterminators out.

Since these fixes are aimed at four specific bugs introduced on Patch Tuesday, they don’t include the massive patches normally appearing on the second Patch Whateverday of the month. My guess is we’ll see at least one more big set of Windows patches before the month is out. Oh, boy.

Windows July patches, version 2

Yesterday, Monday, July 16, Microsoft released 27 new security patches for Windows, bringing the total number of patches so far this month up to 156. The new patches fall into six separate groups:

To read this article in full, please click here

Read more

Microsoft yanks buggy Office 2016 patch KB 4018385, republishes all of this month’s patch downloads

Credit to Author: Woody Leonhard| Date: Fri, 13 Jul 2018 06:43:00 -0700

As I reported yesterday, the July 2018 Windows and Office patches teem with bugs. We’re just beginning to see the fallout.

The July 3 non-security Office 2016 patch KB 4018385 is officially yanked. If you don’t recall KB 4018385 — a small patch in a sea of Office fixes — the original KB article describes it thusly:

To read this article in full, please click here

Read more

Patch Tuesday problems abound, Server 2016 crashes, and a .Net patch goes down in flames

Credit to Author: Woody Leonhard| Date: Thu, 12 Jul 2018 06:18:00 -0700

You know it’s going to be an Alice in Wonderland month when some sites report that Microsoft plugged 54 vulnerabilities on Patch Tuesday, while others report 53. Fact is, patching has become so brutal — and so banal — that there’s no consensus on counting, much less on what’s good and bad.

Suffice to say that, once again this month, there was a huge number of security patches (129 individual patches, according to the Microsoft Update Catalog), with no pressing security fixes unless you’re using the Edge browser or Internet Explorer. Microsoft changed Win10 version 1803 to “Semi-Annual Channel,” but the term now means less than it ever has before. If that’s possible.

To read this article in full, please click here

Read more

Machine learning vs. social engineering

Credit to Author: Windows Defender ATP| Date: Thu, 07 Jun 2018 13:00:56 +0000

Machine learning is a key driver in the constant evolution of security technologies at Microsoft. Machine learning allows Microsoft 365 to scale next-gen protection capabilities and enhance cloud-based, real-time blocking of new and unknown threats. Just in the last few months, machine learning has helped us to protect hundreds of thousands of customers against ransomware,

Read more

Read more

Get the Microsoft June patches applied, but watch out for Win7 NICs and old antivirus

Credit to Author: Woody Leonhard| Date: Mon, 02 Jul 2018 07:05:00 -0700

Windows 7 customers should be on the lookout for a couple of, uh, challenges this month, as the Win10 1803 trail of tears continues and Win10 1709 finally looks pretty solid.

The Win7/Server 2008R2 network card bugs continue

First, the good news. If you installed last month’s Win7/Server 2008R2 patches and your network connections didn’t go kablooey, you’re almost undoubtedly OK to proceed with this month’s patches.

On the other hand, if you’ve been waiting to install patches on your Win7 or Server 2008R2 machine, you need to be aware of a bug that Microsoft has acknowledged. It was introduced by a patch back in March, according to the KB articles, and hasn’t been fixed yet:

To read this article in full, please click here

Read more

Microsoft Patch Alert: Some bugs in Win 10 (1803) fixed, others persist

Credit to Author: Woody Leonhard| Date: Wed, 27 Jun 2018 13:23:00 -0700

Microsoft’s patches in June took on some unexpected twists.

Windows 7 owners with older, 2002-era Pentium III machines got their patching privileges revoked without warning or explanation (and a documentation cover-up to boot), but there’s little sympathy in the blogosphere for elderly PCs.

Win10 1803 was declared fully fit for business, a pronouncement that was followed weeks later by fixes for a few glaring, acknowledged bugs — and stony silence for other known problems.

To read this article in full, please click here

Read more

Big Win10 1709 patch reinforces twice-a-month patching pace but, oddly, nothing new for 1803

Credit to Author: Woody Leonhard| Date: Fri, 22 Jun 2018 05:36:00 -0700

Microsoft’s Windows 10 patching pace is so fast at this point that one Patch Tuesday doesn’t cover all the bases. Instead, we’re seeing one massive Cumulative Update on Patch Tuesday, and a second — typically large — grab bag of patches later in the month.

You have to wonder what’s happening, though, when Microsoft can deliver its second bundle of patches for 1709, 1703 and 1607 before the second patch for the latest version, 1803, sees light of day.

The Win10 patches

KB 4284822 for Win10 1709

To read this article in full, please click here

Read more

Make sure Windows auto update is temporarily turned off, and watch out for SMBv1 fixes

Credit to Author: Woody Leonhard| Date: Mon, 11 Jun 2018 13:12:00 -0700

In May, we saw a host of bugs introduced by the Patch Tuesday “security” patches. By the end of the month, patches for those patches killed almost all of the bugs – even the inability of Win10 version 1803 to run on certain kinds of solid-state drives, including the one in some Surface Pros.

We also saw Microsoft push Win10 version 1803 onto machines that were specifically set to avoid it. I haven’t seen any official response to Microsoft’s inquiry into the reports, but we now have a sighting of a Win7 machine being pushed onto Win10, in spite of its settings.

To read this article in full, please click here

Read more

Machine learning vs. social engineering

Credit to Author: Windows Defender ATP| Date: Thu, 07 Jun 2018 13:00:56 +0000

Machine learning is a key driver in the constant evolution of security technologies at Microsoft. Machine learning allows Microsoft 365 to scale next-gen protection capabilities and enhance cloud-based, real-time blocking of new and unknown threats. Just in the last few months, machine learning has helped us to protect hundreds of thousands of customers against ransomware,

Read more

Read more