Microsoft Patch Tuesday – June 2023

Today’s Patch Tuesday brings us 69 new CVEs which contain 6 criticals. Not that bad, so let’s briefly review them! CVE-2023-29363 / CVE-2023-32014 / CVE-2023-32015 – Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability We’re starting hard. 3 vulnerabilities in Windows Pragmatic General Multicast with CVSS = 9.8. They allow a remote, unauthenticated attacker […]

Microsoft Patch Tuesday – June 2023 Read More »

Microsoft Patch Tuesday – March 2023

Today’s Patch Tuesday brings us 74 new CVEs which contain 2 zero-days and 8 criticals. Let’s briefly review them! CVE-2023-23397 – Microsoft Outlook Elevation of Privilege Vulnerability The first zero-day should be treated seriously. This bug allows a remote, unauthenticated attacker to access a user’s Net-NTLMv2 hash by sending a specially crafted e-mail which triggers

Microsoft Patch Tuesday – March 2023 Read More »

#GoIntune #2 Cloud Attach and Co-Management

One of the consideration before moving your endpoint management to Intune is whether to use Cloud Attach or Co-management with your current Microsoft Endpoint Configuration Manager (SCCM/MECM) setup. In this blog post, we will explore how Cloud Attach and Co-Management can be used in Intune and MECM to maximize efficiency and cost savings. We’ll also

#GoIntune #2 Cloud Attach and Co-Management Read More »

Microsoft Patch Tuesday – January 2023

We are starting this year with a hard opening from Microsoft. 98 vulnerabilities where 2 are zero-days plus additional 11 criticals, and others marked as important. Let’s briefly review them! CVE-2023-21674 – Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability This is the first zero-day under active attack. This vulnerability could lead to

Microsoft Patch Tuesday – January 2023 Read More »

#GoIntune #1 Device identity in Azure AD and Intune

This article is part of the #GoIntune series that describes endpoint management and protection with use of the Microsoft Intune platform. Active Directory and computer objects In the on-premises only world, Windows device is joined to the domain or workgroup. Computer object joined to the on-premises Active Directory domain has SID (Security IDentifier) that uniquely

#GoIntune #1 Device identity in Azure AD and Intune Read More »

Microsoft Patch Tuesday – November 2022

This month, Microsoft has published fixes for 69 vulnerabilities, and 5 of them come from third parties integrated into Microsoft products. We have patches for 6 zero-days (!), 9 criticals, and 2 highs. Let’s briefly review them. CVE-2022-41040 / CVE-2022-41082 – Microsoft Exchange Server Elevation of Privilege Vulnerability / Remote Code Execution Vulnerability These patches

Microsoft Patch Tuesday – November 2022 Read More »

Scroll to Top