I have been investigating an incident involving two EC2 instances on AWS that were infected with ransomware, cryptocurrency miners, and other types of malware. Sounds scary, right?! Well actually, the approaches that the attackers took to get onto the hosts do not appear to be that sophisticated, and this type of attack could occur in any environment, not just in the cloud. … [Read more...]
Windows Updates Fix GDI+, RDP, and TCP Vulnerabilities
Severity: High Summary: These vulnerabilities affect: All current versions of Windows (and related components like XML Core Services) How an attacker exploits them: Multiple vectors of attack, including enticing you to malicious web sites, or into interacting with malicious documents or images. Impact: In the worst case, an attacker can gain complete control of your Windows … [Read more...]
Microsoft Black Tuesday: Seven Security Bulletins Include a Huge IE Update
If there is one day of the month you should really focus on software patching, this is the day. The second Tuesday of the month is both Microsoft and Adobe patch day. If you run a Windows shop, or you use Adobe products on any platform, it's time for you to get patching! As they promised, Microsoft released seven bulletins today to fix a wide range of security vulnerabilities … [Read more...]
Windows Updates Fix Critical RDC Flaw, and More
Severity: High Summary: These vulnerabilities affect: All current versions of Windows and some of the components that ship with it How an attacker exploits them: Multiple vectors of attack, including luring users to web sites with malicious code or sending specially crafted network packets Impact: In the worst case, an attacker can gain complete control of your Windows … [Read more...]
Windows Updates Fix Critical RDC Flaw, and More
Severity: High Summary: These vulnerabilities affect: All current versions of Windows and some of the components that ship with it How an attacker exploits them: Multiple vectors of attack, including luring users to web sites with malicious code or sending specially crafted network packets Impact: In the worst case, an attacker can gain complete control of your Windows … [Read more...]