Microsoft Patch Tuesday, July 2021 Edition

Credit to Author: BrianKrebs| Date: Tue, 13 Jul 2021 21:41:47 +0000

Microsoft today released updates to patch at least 116 security holes in its Windows operating systems and related software. A half of dozen of the vulnerabilities addressed today are under active attack, according to Microsoft.

Read more

Microsoft Issues Emergency Patch for Windows Flaw

Credit to Author: BrianKrebs| Date: Wed, 07 Jul 2021 14:34:59 +0000

Microsoft on Tuesday issued an emergency software update to quash a security bug that’s been dubbed “PrintNightmare,” a critical vulnerability in all supported versions of Windows that is actively being exploited. The fix comes a week ahead of Microsoft’s normal monthly Patch Tuesday release, and follows the publishing of exploit code showing would-be attackers how to leverage the flaw to break into Windows computers.

Read more

Another 0-Day Looms for Many Western Digital Users

Credit to Author: BrianKrebs| Date: Fri, 02 Jul 2021 16:05:50 +0000

Countless Western Digital customers saw their MyBook Live network storage drives remotely wiped in the past month thanks to a bug in a product line the company stopped supporting in 2015, as well as a previously unknown zero-day flaw. But there is a similarly serious zero-day flaw present in a much broader range of newer Western Digital MyCloud network storage devices that will remain unfixed for many customers who can’t or won’t upgrade to the latest operating system.

Read more

MyBook Users Urged to Unplug Devices from Internet

Credit to Author: BrianKrebs| Date: Fri, 25 Jun 2021 20:23:28 +0000

Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a previously unknown critical flaw that can be triggered by anyone who knows the Internet address of an affected device.

Read more

Microsoft Patches Six Zero-Day Security Holes

Credit to Author: BrianKrebs| Date: Tue, 08 Jun 2021 20:53:28 +0000

Microsoft today released another round of security updates for Windows operating systems and supported software, including fixes for six zero-day bugs that malicious hackers already are exploiting in active attacks.

Read more

Microsoft Patch Tuesday, May 2021 Edition

Credit to Author: BrianKrebs| Date: Tue, 11 May 2021 20:28:19 +0000

Microsoft today released fixes to plug at least 55 security holes in its Windows operating systems and other software. Four of these weaknesses can be exploited by malware and malcontents to seize complete, remote control over vulnerable systems without any help from users. On deck this month are patches to quash a wormable flaw, a creepy wireless bug, and yet another reason to call for the death of Microsoft’s Internet Explorer (IE) web browser.

Read more

Microsoft Patch Tuesday, April 2021 Edition

Credit to Author: BrianKrebs| Date: Tue, 13 Apr 2021 23:12:19 +0000

Microsoft today released updates to plug at least 110 security holes in its Windows operating systems and other products. The patches include four security fixes for Microsoft Exchange Server — the same systems that have been besieged by attacks on four separate (and zero-day) bugs in the email software over the past month. Redmond also patched a Windows flaw that is actively being exploited in the wild.

Read more

Warning the World of a Ticking Time Bomb

Credit to Author: BrianKrebs| Date: Tue, 09 Mar 2021 21:04:07 +0000

Globally, hundreds of thousand of organizations running Exchange email servers from Microsoft just got mass-hacked, including at least 30,000 victims in the United States. Each hacked server has been retrofitted with a “web shell” backdoor that gives the bad guys total, remote control, the ability to read all email, and easy access to the victim’s other computers. Researchers are now racing to identify, alert and help victims, and hopefully prevent further mayhem.

Read more