Acros Security – Page 2 – WindowsTechs.com

Malware peddlers hit Office users with old but reliable exploit

Posted on June 10, 2019 by Zeljka Zorz

Emails delivering RTF files equipped with an exploit that requires no user interaction (except for opening the booby-trapped file) are hitting European users’ inboxes, Microsoft researchers have warned. Exploit delivers backdoor The exploit takes… Continue reading Malware peddlers hit Office users with old but reliable exploit→

New infosec products of the week: April 5, 2019

Posted on April 5, 2019 by Mirko Zorz

Free cybersecurity threat assessment for midsize and large organizations Cynet unveiled the Cynet Threat Assessment program. The free offering for organizations with 500 or more endpoints identifies critically exposed attack surfaces and provides actio… Continue reading New infosec products of the week: April 5, 2019→

0patch PRO simplifies Windows security patching

Posted on April 4, 2019 by Industry News

ACROS Security, a globally recognized provider of security micropatches, launched 0patch PRO, a service that simplifies security patching on Windows platform for Enterprises and individuals. 0patch PRO is a first commercial platform of its kind to enab… Continue reading 0patch PRO simplifies Windows security patching→

0patch releases micropatch for Windows Contacts RCE zero-day

Posted on January 22, 2019 by Zeljka Zorz

ACROS Security, the creators of 0patch, have released a micropatch for a recently revealed zero-day RCE flaw affecting Windows. About the vulnerability and the micropatch Security researcher John Page (aka Hyp3rlinx) published the details about the vul… Continue reading 0patch releases micropatch for Windows Contacts RCE zero-day→

0patch releases micropatch for Windows Task Scheduler zero-day

Posted on August 31, 2018 by Zeljka Zorz

Earlier this week a security researcher that goes by “SandboxEscaper” published details and a PoC exploit for a zero-day local privilege escalation vulnerability affecting Windows. Microsoft has, so far, been cagey about when they will push… Continue reading 0patch releases micropatch for Windows Task Scheduler zero-day→

How to close the security update gap

Posted on April 3, 2018 by Zeljka Zorz

Security patching is hard and patch fatigue is real. So what can be done to make the process more simple, less disruptive, and more likely to be performed in a timely manner? According to the results of a recent survey by ACROS Security, those responsa… Continue reading How to close the security update gap→

Microsoft plugs 56 vulns, including Office flaw exploited in attacks

Posted on January 10, 2018 by Zeljka Zorz

As part of the January 2018 Patch Tuesday, Microsoft has released fixes for 56 CVE-listed vulnerabilities, including the Meltdown and Spectre flaws, and an Office bug actively exploited by attackers. Office flaw exploited in the wild Security updates a… Continue reading Microsoft plugs 56 vulns, including Office flaw exploited in attacks→

Microsoft offers mitigation advice for DDE attacks scenarios

Posted on November 9, 2017 by Zeljka Zorz

Microsoft has published a security advisorty containing DDE attack mitigation instructions for both users and admins. What’s a DDE attack? For a while now, attackers have been ditching malicious macros and OLE objects in favor of the Dynamic Data Exchange (DDE) attack technique to deliver malware via booby-trapped Office documents. Opening such a document will not trigger any security warnings. Users will be simply asked to update the document links, and then to execute the … More → Continue reading Microsoft offers mitigation advice for DDE attacks scenarios→