2 min
Patch Tuesday
Patch Tuesday - April 2019
Today's Microsoft updates
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/18306ed5-1019-e911-a98b-000d3a33a34d]
resolve over 70 vulnerabilities, most of which affect the Windows operating
system itself. Two of the vulnerabilities are already being exploited in the
wild. Both CVE-2019-0803
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0803]
and CVE-2019-0859
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0
3 min
Patch Tuesday
Patch Tuesday - March 2019
Today Microsoft released updates
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/ac45e477-1019-e911-a98b-000d3a33a34d]
that resolve over 60 different vulnerabilities. As usual, Windows, web browsers,
and SharePoint Server are all affected. Office gets off relatively lightly with
only a single vulnerability fixed (CVE-2019-0748
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0748]
, a remote code execution (RCE) vulnerability in the Acces
2 min
Patch Tuesday
Patch Tuesday - February 2019
Microsoft got back in the swing of things today after a couple of relatively
light months, with over 70 separate CVEs
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/51503ac5-e6d2-e811-a983-000d3a33c573]
being addressed.
The usual suspects got patches, including Windows, Office, Browsers (including
Adobe Flash
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV190003]),
.NET Framework, SharePoint, Exchange, and another slew of JET Database Engi
2 min
Patch Tuesday
Patch Tuesday - January 2019
Microsoft's first updates of the year
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/b4384b95-e6d2-e811-a983-000d3a33c573]
address 49 separate vulnerabilities, which is on the low side relatively
speaking. We're also getting rare respite from Flash vulnerabilities (although
Adobe published
[https://helpx.adobe.com/security/products/flash-player/apsb19-01.html] a
"security bulletin" for Flash today, the new version does not actually contain
any security fixes). It's
5 min
Haxmas
HaXmas Review: 12 Patch Tuesdays a-Patching
Another year, another 701 patched Microsoft vulnerabilities: just a 2% increase from 2017's count of 686.
2 min
Patch Tuesday
Patch Tuesday - December 2018
It's the last Patch Tuesday
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/6c54acc6-2ed2-e811-a980-000d3a33a34d]
of 2018! As is often the case in December, it's a relatively light one with
"only" 38 CVEs. (Every other month in 2018 clocked in with at least 50 patched
vulnerabilities.) This is in addition to the two Adobe Flash CVEs
[http://helpx.adobe.com/security/products/flash-player/apsb18-42.html] that were
patched out-of-band last week, due to a remote code ex
2 min
Patch Tuesday
Patch Tuesday - November 2018
Microsoft's patches this month
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/ff746aa5-06a0-e811-a978-000d3a33c573]
address over 60 vulnerabilities. Just like last month
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-8453]
, another zero-day privilege escalation vulnerability in Win32k has been
patched. CVE-2018-8589
[https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-8589]
has been seen exploited in the wild,
3 min
Penetration Testing
7 Funny and Punny Halloween Costume Ideas for Tech and Cybersecurity Pros
Stuck on what to be this year? Here are some of our favorite Halloween costume ideas for tech and cybersecurity professionals.
2 min
Patch Tuesday
Patch Tuesday - October 2018
This month's patches from Microsoft include fixes for 50 distinct vulnerabilities.
3 min
Patch Tuesday
Patch Tuesday - September 2018
More than 60 vulnerabilities were addressed by this month's patches, including CVE-2018-15967 (a privilege escalation/information disclosure vulnerability in Adobe Flash Player).
2 min
Patch Tuesday
Patch Tuesday - August 2018
Microsoft's updates this month
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/ecb26425-583f-e811-a96f-000d3a33c573]
address over 60 vulnerabilities, 20 of which are classified as Critical. As
usual, most of this month's fixes are browser-related, and nearly half of the
flaws could lead to remote code execution (RCE). Patches for Exchange, SQL
Server, and Microsoft Office were also released.
Two of this month's vulnerabilities have already been seen exploited in th
2 min
Patch Tuesday
Patch Tuesday - July 2018
This month's security updates
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/1c26eff2-573f-e811-a96f-000d3a33c573]
from Microsoft address 50 separate vulnerabilities, including two fixes
[https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180017]
for Adobe Flash Player (APSB18-24
[https://helpx.adobe.com/security/products/flash-player/apsb18-24.html]). There
are no 0-days this month, although three vulnerabilities had been publicly
disclosed pri
2 min
Patch Tuesday
Patch Tuesday - June 2018
This month's Patch Tuesday
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/7d4489d6-573f-e811-a96f-000d3a33c573]
is rather run-of-the-mill, with a total of 50 vulnerabilities being addressed by
Microsoft. However, a bit of excitement came earlier this month, with an
out-of-band patch for Adobe Flash Player released last Thursday
[https://helpx.adobe.com/security/products/flash-player/apsb18-19.html] to fix
four security issues. Two of these were flaws that can lead
2 min
Patch Tuesday
Patch Tuesday - May 2018
Microsoft has released patches
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/a82328f9-1f26-e811-a968-000d3a33a34d]
that resolve over 60 separate vulnerabilities including an update
[https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180008]
for Flash Player that addresses a critical Remote Code Execution (RCE)
vulnerability (CVE-2018-4944
[https://helpx.adobe.com/security/products/flash-player/apsb18-16.html]). As
usual, the majority of fixes a
3 min
Patch Tuesday
Patch Tuesday - April 2018
Over 70 vulnerabilities have been fixed this month
[https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/abf77563-8612-e811-a966-000d3a33a34d]
, including 6 in Adobe Flash
[https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180007] (
APSB18-08
[https://helpx.adobe.com/security/products/flash-player/apsb18-08.html]).
At a high level, there's nothing too out of the ordinary. Unfortunately, that
means the majority of the patched vulnerabilities are once ag