Security

Microsoft Patch Tuesday – January 2023

We are starting this year with a hard opening from Microsoft. 98 vulnerabilities where 2 are zero-days plus additional 11 criticals, and others marked as important. Let’s briefly review them! CVE-2023-21674 – Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability This is the first zero-day under active attack. This vulnerability could lead to

Microsoft Patch Tuesday – January 2023 Read More »

#GoIntune #1 Device identity in Azure AD and Intune

This article is part of the #GoIntune series that describes endpoint management and protection with use of the Microsoft Intune platform. Active Directory and computer objects In the on-premises only world, Windows device is joined to the domain or workgroup. Computer object joined to the on-premises Active Directory domain has SID (Security IDentifier) that uniquely

#GoIntune #1 Device identity in Azure AD and Intune Read More »

Microsoft Patch Tuesday – November 2022

This month, Microsoft has published fixes for 69 vulnerabilities, and 5 of them come from third parties integrated into Microsoft products. We have patches for 6 zero-days (!), 9 criticals, and 2 highs. Let’s briefly review them. CVE-2022-41040 / CVE-2022-41082 – Microsoft Exchange Server Elevation of Privilege Vulnerability / Remote Code Execution Vulnerability These patches

Microsoft Patch Tuesday – November 2022 Read More »

Microsoft Patch Tuesday – July 2022

This month, Microsoft has fixed 55 vulnerabilities, including 3 criticals and 1 zero-day. CVE-2022-22047 – Windows CSRSS Elevation of Privilege Vulnerability Let’s start with the zero-day – Microsoft is silent about exploitation details, like where or how widely it is being exploited. This bug allows an attacker to gain SYSTEM privileges. An attacker might combine

Microsoft Patch Tuesday – July 2022 Read More »

Microsoft Patch Tuesday – June 2022

This month, Microsoft has fixed 55 vulnerabilities, including 3 criticals and 1 zero-day (well-known ‘Follina’). CVE-2022-30190 – Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability (aka Follina) Microsoft finally fixed the widely-exploited Follina MSDT zero-day vulnerability!This zero-day vulnerability was discovered last month and bypassed security protections, like Microsoft Office’s Protected View, and executed

Microsoft Patch Tuesday – June 2022 Read More »

Scroll to Top