Unless you're new to IT, you're probably aware that today—the second Tuesday of the month—is Microsoft Patch Day. As expected, Microsoft released nine security bulletins today, fixing 13 vulnerabilities across products like Internet Explorer (IE), Windows and its components, Sharepoint Server, and a few other Office server products. The worst two, Critical-rated updates fix … [Read more...]
Remote Desktop and IE Updates Top April's Patch Day List
Unless you're new to IT, you're probably aware that today—the second Tuesday of the month—is Microsoft Patch Day. As expected, Microsoft released nine security bulletins today, fixing 13 vulnerabilities across products like Internet Explorer (IE), Windows and its components, Sharepoint Server, and a few other Office server products. The worst two, Critical-rated updates fix … [Read more...]
WatchGuard Security Week in Review: Episode 39 – RDP Hostages
Hostage RDP Servers, Pin Pad Hacks, and PS3 Key Leak Are you ready for some Friday water-cooler security gossip? Did you hear about a bunch RDP servers at Fortune 500 companies getting hacked? How about the story about Dutch law enforcement legally hijacking suspect computers? If not, you've come to the right place. I cover those stories and more in today's WatchGuard Security … [Read more...]
August Windows Bulletins Fix RDP, JScript, and Kernel-Mode Drivers Flaws
Severity: High Summary: These vulnerabilities affect: All current versions of Windows and the components that ship with it How an attacker exploits them: Multiple vectors of attack, including sending specially crafted network traffic, enticing users to visit malicious web content, or running malicious applications Impact: In the worst case, an attacker can gain complete … [Read more...]
Four Windows Bulletins Fix RDP, .NET Framework, and Kernel Flaws
Severity: High Summary: These vulnerabilities affect: All current versions of Windows and its optional .NET Framework component. How an attacker exploits them: Multiple vectors of attack, including sending specially crafted network packets or enticing your users to web sites with malicious content Impact: In the worst case, an attacker can gain complete control of your … [Read more...]