May 15, 2024 at 04:24AM In May 2024, Microsoft’s Patch Tuesday updates addressed 61 security flaws, including two zero-days actively exploited. A Critical flaw in the Windows MSHTML Platform and an Important one in the Desktop Window Manager were exploited in attacks. The vulnerabilities require urgent fixes to prevent widespread exploitation. Other vendors have also … Read more
May 14, 2024 at 04:21PM Microsoft recently resolved a known issue causing VPN connection failures on Windows devices following April 2024 security updates. The impacted versions include Windows 11, 10, and Server 2008 and later. While the specific cause wasn’t provided, users are advised on how to seek support and temporarily mitigate the problem until … Read more
May 14, 2024 at 03:15PM Microsoft has resolved an issue causing NTLM authentication failures and domain controller reboots after April’s Windows Server security updates. The problem affects domain controllers with high NTLM traffic and few primary DCs. The fix is included in the May 2024 cumulative updates. Admins unable to install the latest updates can … Read more
May 14, 2024 at 01:54PM Today’s Microsoft Patch Tuesday includes updates for 61 flaws, with one critical vulnerability fixed in Microsoft SharePoint Server. It addresses 17 elevation of privilege vulnerabilities, two security feature bypass vulnerabilities, 27 remote code execution vulnerabilities, seven information disclosure vulnerabilities, three denial of service vulnerabilities, and four spoofing vulnerabilities. Additionally, three … Read more
May 14, 2024 at 01:47PM Microsoft has released the KB5037771 cumulative update for Windows 11 23H3 as part of its April 2024 Patch Tuesday security updates, containing thirty bug fixes and changes, including a fix for a bug breaking VPN connections. The update also brings new features to the Start menu and Widgets, and addresses … Read more
April 24, 2024 at 09:15AM The US cybersecurity agency CISA has added a two-year-old Windows Print Spooler flaw, CVE-2022-38028, to its Known Exploited Vulnerabilities catalog due to exploitation by APT28. Federal agencies are required to address this vulnerability within three weeks, while all organizations are urged to perform vulnerability assessments and apply the available patches … Read more
April 11, 2024 at 06:12AM Palo Alto Networks’ recent updates for PAN-OS operating system patch multiple high-severity vulnerabilities, including flaws that can lead to firewall disruptions. The vulnerabilities, like CVE-2024-3385, can be exploited for denial-of-service (DoS) attacks, impacting specific models and configuration settings. The company has also addressed medium-severity issues in various products, including Panorama … Read more
April 10, 2024 at 06:18AM Microsoft’s April 2024 Patch Tuesday updates fix around 150 vulnerabilities, including two zero-day exploits. The first, CVE-2024-26234, involves a proxy driver spoofing flaw in Windows, reportedly linked to an Android app named LaiXi associated with a backdoor. Microsoft addressed this issue by adding relevant files to its driver revocation list. … Read more
April 9, 2024 at 02:22PM Microsoft has released the KB5036892 cumulative update for Windows 10 21H2 and 22H2, including 23 changes and two new features. This update contains security updates and can be installed manually through Windows Update or by scheduling installation. It brings bug fixes, new features like Windows Spotlight, and more information on … Read more
April 9, 2024 at 01:42PM Adobe issued urgent security updates for its enterprise products, including Adobe Commerce and Magento Open Source, to address code execution vulnerabilities that hackers could exploit. The company also fixed security flaws in Adobe Experience Manager, Adobe Media Encoder, Adobe After Effects, Adobe Photoshop, Adobe InDesign, and Adobe Animate through Patch … Read more