Windows

Microsoft releases two emergency out-of-band Windows codecs patches

Microsoft has released two emergency out-of-band Windows Codecs Library patches for multiple Windows 10 and Windows Server versions. The release comes nearly two weeks before the next ‘Patch Tuesday’ updates scheduled for July 14.

Microsoft releases two emergency out-of-band Windows codecs patches Read More »

Microsoft releases out-of-band patch for Windows 10 vulnerability (CVE-2020-1441)

Microsoft has released an out-of-band patch to fix a Windows 10 spatial data service vulnerability. An attacker could exploit the vulnerability to overwrite or modify a protected file leading to privilege escalation.

Microsoft releases out-of-band patch for Windows 10 vulnerability (CVE-2020-1441) Read More »

Microsoft June 2020 Security Updates (and a Critical Adobe Flash patch)

Microsoft released the June 2020 Security Updates that includes 128 unique vulnerability fixes, 11 of those rated critical. In addition, Adobe patched a Critical vulnerability in Adobe Flash.

Microsoft June 2020 Security Updates (and a Critical Adobe Flash patch) Read More »

TrickBot trojan updates propagation module with nworm to evade detection

TrickBot recently replaced one of its propagation modules “mworm” with new module named “nworm.” The updated module can exploit vulnerable domain controllers (DCs) and evade detection by running in memory.

TrickBot trojan updates propagation module with nworm to evade detection Read More »

Microsoft April 2020 Security Updates (with fixes for 2 zero-days)

Microsoft released the April 2020 Security Updates that includes 113 unique vulnerability fixes, 18 of those rated critical. The updates also include patches for two Adobe Font Manager zero day vulnerabilities disclosed in March.

Microsoft April 2020 Security Updates (with fixes for 2 zero-days) Read More »

Microsoft February 2020 Security Updates (includes IE zero-day fix)

Microsoft issued the February 2020 Security Updates that include 101 unique vulnerability fixes, 13 of those rated critical. The update also includes a patch for an IE zero-day scripting engine vulnerability CVE-2020-0674 disclosed in January.

Microsoft February 2020 Security Updates (includes IE zero-day fix) Read More »

Microsoft December 2019 Security Updates (includes fix for one active exploit)

Microsoft issued the December 2019 Security Updates that include 36 unique vulnerability fixes, 7 of those rated critical and 29 rated important. One of the patches addresses a Win32k vulnerability under active attack in the wild.

Microsoft December 2019 Security Updates (includes fix for one active exploit) Read More »