Today's Microsoft Patch Day will probably be a bit busier than expected. It looks like Microsoft called a last minute audible, releasing seven security bulletins rather than the five I mention in last week's security video. The good news is this last minute play change might help your security team win the game by providing your users with a more protected web … [Read more...]
Microsoft Black Tuesday: Patch Critical IE, RDP, and RAP Vulnerabilities
It's that time of the month again... By which I mean, time for Microsoft administrators to download, test, and deploy a bunch of Microsoft security patches. This morning, Microsoft posted their security bulletins for August. You can find a condensed version of their bulletins in the August bulletin summary. By the numbers, today's Patch Day looks similar to the last month, … [Read more...]
Microsoft Black Tuesday: Get the XML Core Services Patch Immediately
Have you been jonesing for Microsoft Patch Day like a kitty anticipating the next hit of that sweet, sweet catnip? Ah... probably not. Nonetheless, Patch Day has arrived, so run off and snort your latest dose of security updates now. Microsoft's July bulletin summary highlights nine security bulletins, which fix 16 vulnerabilities in various products including Windows, … [Read more...]
VBA Vulnerability Makes Office Documents Dangerous
Summary: This vulnerability affects: Microsoft Visual Basic for Applications (VBA), which ships with all current versions of Office How an attacker exploits it: By tricking one of your users into opening a malicious Office document Impact: An attacker can potentially gain complete control of your windows computers (depending on the privileges of the user) What to … [Read more...]