Right before last weekend, a well-known Google Project Zero researcher tweeted about a “crazy bad” and “wormable” Windows zero day vulnerability one of his co-researchers found. He described it as one of the worst Windows flaws he’s seen in memory. This, of course, caused a lot of speculation in the community towards what the flaw was. On Monday, Microsoft squashed all conjecture by quickly releasing an early Security Advisory with an update for this zero day Malware Protection Engine vulnerability. Watch today’s video to learn a bit more about it, and to learn about the other patches you should get during Tuesday’s Patch Day.
Episode Runtime: 3:15
Direct YouTube Link: https://www.youtube.com/watch?v=gdAiFJlTU2E
EPISODE REFERENCES:
- The researcher tweet that start the whole thing – Twitter
- A “crazy bad” zero day in Windows – Hacker News
- Microsoft’s Security Advisory for Malware Protection Engine zero day – Microsoft
- Patch Day Summaries:
- Microsoft May Patch Day release notes – Microsoft
- Microsoft May Patch Day Security Update Guide – Microsoft
- Cisco patches CIA Vault 7 switch hack – The Register
- Adobe Patch Day summary page – Adobe
- Microsoft May Patch Day release notes – Microsoft