3 min
Patch Tuesday
Patch Tuesday - May 2019
Hot on the heels of several Apple security advisories
[https://support.apple.com/en-us/HT201222] on Monday, May's Patch Tuesday sees
Microsoft fix nearly 80 vulnerabilities
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/e5989c8b-7046-e911-a98e-000d3a33a34d]
across their product line, some of them very serious indeed, and Adobe address
over 80 in Acrobat Reader
[https://helpx.adobe.com/security/products/acrobat/apsb19-18.html] alone. A fix
for a critical remote cod
Read Full Post
2 min
Patch Tuesday
Patch Tuesday - April 2019
Today's Microsoft updates
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/18306ed5-1019-e911-a98b-000d3a33a34d]
resolve over 70 vulnerabilities, most of which affect the Windows operating
system itself. Two of the vulnerabilities are already being exploited in the
wild. Both CVE-2019-0803
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0803]
and CVE-2019-0859
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0
Read Full Post
3 min
Patch Tuesday
Patch Tuesday - March 2019
Today Microsoft released updates
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/ac45e477-1019-e911-a98b-000d3a33a34d]
that resolve over 60 different vulnerabilities. As usual, Windows, web browsers,
and SharePoint Server are all affected. Office gets off relatively lightly with
only a single vulnerability fixed (CVE-2019-0748
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0748]
, a remote code execution (RCE) vulnerability in the Acces
Read Full Post
2 min
Patch Tuesday
Patch Tuesday - February 2019
Microsoft got back in the swing of things today after a couple of relatively
light months, with over 70 separate CVEs
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/51503ac5-e6d2-e811-a983-000d3a33c573]
being addressed.
The usual suspects got patches, including Windows, Office, Browsers (including
Adobe Flash
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV190003]),
.NET Framework, SharePoint, Exchange, and another slew of JET Database Engi
Read Full Post
2 min
Patch Tuesday
Patch Tuesday - January 2019
Microsoft's first updates of the year
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/b4384b95-e6d2-e811-a983-000d3a33c573]
address 49 separate vulnerabilities, which is on the low side relatively
speaking. We're also getting rare respite from Flash vulnerabilities (although
Adobe published
[https://helpx.adobe.com/security/products/flash-player/apsb19-01.html] a
"security bulletin" for Flash today, the new version does not actually contain
any security fixes). It's
Read Full Post
5 min
Haxmas
HaXmas Review: 12 Patch Tuesdays a-Patching
Another year, another 701 patched Microsoft vulnerabilities: just a 2% increase from 2017's count of 686.
Read Full Post
2 min
Patch Tuesday
Patch Tuesday - December 2018
It's the last Patch Tuesday
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/6c54acc6-2ed2-e811-a980-000d3a33a34d]
of 2018! As is often the case in December, it's a relatively light one with
"only" 38 CVEs. (Every other month in 2018 clocked in with at least 50 patched
vulnerabilities.) This is in addition to the two Adobe Flash CVEs
[http://helpx.adobe.com/security/products/flash-player/apsb18-42.html] that were
patched out-of-band last week, due to a remote code ex
Read Full Post
2 min
Patch Tuesday
Patch Tuesday - November 2018
Microsoft's patches this month
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/ff746aa5-06a0-e811-a978-000d3a33c573]
address over 60 vulnerabilities. Just like last month
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-8453]
, another zero-day privilege escalation vulnerability in Win32k has been
patched. CVE-2018-8589
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-8589]
has been seen exploited in the wild,
Read Full Post
3 min
Penetration Testing
7 Funny and Punny Halloween Costume Ideas for Tech and Cybersecurity Pros
Stuck on what to be this year? Here are some of our favorite Halloween costume ideas for tech and cybersecurity professionals.
Read Full Post
2 min
Patch Tuesday
Patch Tuesday - October 2018
This month's patches from Microsoft include fixes for 50 distinct vulnerabilities.
Read Full Post
3 min
Patch Tuesday
Patch Tuesday - September 2018
More than 60 vulnerabilities were addressed by this month's patches, including CVE-2018-15967 (a privilege escalation/information disclosure vulnerability in Adobe Flash Player).
Read Full Post
2 min
Patch Tuesday
Patch Tuesday - August 2018
Microsoft's updates this month
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/ecb26425-583f-e811-a96f-000d3a33c573]
address over 60 vulnerabilities, 20 of which are classified as Critical. As
usual, most of this month's fixes are browser-related, and nearly half of the
flaws could lead to remote code execution (RCE). Patches for Exchange, SQL
Server, and Microsoft Office were also released.
Two of this month's vulnerabilities have already been seen exploited in th
Read Full Post
2 min
Patch Tuesday
Patch Tuesday - July 2018
This month's security updates
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/1c26eff2-573f-e811-a96f-000d3a33c573]
from Microsoft address 50 separate vulnerabilities, including two fixes
[https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180017]
for Adobe Flash Player (APSB18-24
[https://helpx.adobe.com/security/products/flash-player/apsb18-24.html]). There
are no 0-days this month, although three vulnerabilities had been publicly
disclosed pri
Read Full Post
2 min
Patch Tuesday
Patch Tuesday - June 2018
This month's Patch Tuesday
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/7d4489d6-573f-e811-a96f-000d3a33c573]
is rather run-of-the-mill, with a total of 50 vulnerabilities being addressed by
Microsoft. However, a bit of excitement came earlier this month, with an
out-of-band patch for Adobe Flash Player released last Thursday
[https://helpx.adobe.com/security/products/flash-player/apsb18-19.html] to fix
four security issues. Two of these were flaws that can lead
Read Full Post
2 min
Patch Tuesday
Patch Tuesday - May 2018
Microsoft has released patches
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/a82328f9-1f26-e811-a968-000d3a33a34d]
that resolve over 60 separate vulnerabilities including an update
[https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180008]
for Flash Player that addresses a critical Remote Code Execution (RCE)
vulnerability (CVE-2018-4944
[https://helpx.adobe.com/security/products/flash-player/apsb18-16.html]). As
usual, the majority of fixes a
Read Full Post