#MicrosoftAlert

Microsoft warns it lost some customer’s security logs for a month

by

October 17, 2024 at 06:19PM Microsoft has alerted enterprise customers about a critical bug that led to the loss of important logs for nearly a month, jeopardizing the ability of companies to monitor unauthorized activity effectively. This issue highlights significant security risks for organizations dependent on these logs. **Meeting Notes Takeaways:** 1. **Issue Identified**: Microsoft … Read more

About that Windows Installer ‘make me admin’ security hole. Here’s how it’s exploited

by

September 12, 2024 at 07:39AM Microsoft warned users of a Windows Installer flaw, CVE-2024-38014, allowing for SYSTEM-level privilege escalation via an .msi file, exploited in the wild. Security firm SEC Consult disclosed the flaw and released msiscan, an open source tool to detect vulnerable files. Microsoft patched the vulnerability in its latest Patch Tuesday update … Read more