Windows patches – WindowsTechs.com

Border Control, Russia, & Scams – Paul’s Security Weekly #609

Posted on June 21, 2019 by Security Weekly Productions

In the Security News, how not to prevent a cyberwar with Russia, the case against knee-jerk installation of Windows patches, U.S. customs and Border Protection data breach is the result of a supply chain attack, and a phishing scam that hacks 2 factor … Continue reading Border Control, Russia, & Scams – Paul’s Security Weekly #609→

Microsoft Patches Critical Windows DNS Client Vulnerabilities

Posted on October 10, 2017 by Michael Mimoso

Microsoft patched three memory corruption vulnerabilities in the Windows DNS client that could be abused by a man-in-the-middle attacker to run arbitrary code. Continue reading Microsoft Patches Critical Windows DNS Client Vulnerabilities→

Microsoft Addresses NTLM Bugs That Facilitate Credential Relay Attacks

Posted on July 11, 2017 by Michael Mimoso

Microsoft today addressed two NTLM-related vulnerabilities privately disclosed by Preempt Security. The flaws allow for credential relay attacks. Continue reading Microsoft Addresses NTLM Bugs That Facilitate Credential Relay Attacks→

Risk of ‘Destructive Cyber Attacks’ Prompts Microsoft to Update XP Again

Posted on June 13, 2017 by Michael Mimoso

Citing an elevated risk for destructive attacks, Microsoft today included patches for vulnerabilities in Windows XP among its Patch Tuesday updates. Continue reading Risk of ‘Destructive Cyber Attacks’ Prompts Microsoft to Update XP Again→

Second Try at Windows LSASS Patch Addresses Vulnerability

Posted on January 11, 2017 by Michael Mimoso

Microsoft on Tuesday patched a vulnerability in LSASS, the second attempt it has taken at fixing a remote denial-of-service issue in the critical Windows process. Continue reading Second Try at Windows LSASS Patch Addresses Vulnerability→

Microsoft Patches Publicly Disclosed IE, Edge Vulnerabilities

Posted on December 13, 2016 by Michael Mimoso

Microsoft patched a half-dozen critical browser vulnerabilities that have been publicly disclosed, but apparently not used in attacks as of yet. Continue reading Microsoft Patches Publicly Disclosed IE, Edge Vulnerabilities→

Microsoft Patches Five Zero Days Under Attack

Posted on October 11, 2016 by Michael Mimoso

Microsoft released 10 security bulletins on Patch Tuesday that included patches for five zero day vulnerabilities under attack that had not been publicly disclosed until today. Continue reading Microsoft Patches Five Zero Days Under Attack→

Windows PDF Library Flaw Puts Edge Users at Risk for RCE

Posted on August 9, 2016 by Michael Mimoso

Microsoft today released nine security bulletins as part of its August 2016 Patch Tuesday updates. Continue reading Windows PDF Library Flaw Puts Edge Users at Risk for RCE→

Windows Print Spooler Flaws Lead to Code Execution

Posted on July 12, 2016 by Michael Mimoso

Microsoft today released six critical bulletins as part of its July Patch Tuesday update, including patches for remote code execution flaws in Windows Print Spooler components. Continue reading Windows Print Spooler Flaws Lead to Code Execution→

Microsoft Patches JScript, VBScript Flaw Under Attack

Posted on May 10, 2016 by Michael Mimoso

Microsoft’s Patch Tuesday security bulletins include a patch for a JScript and VBScript scripting engine vulnerability being publicly exploited. Continue reading Microsoft Patches JScript, VBScript Flaw Under Attack→