Edge Archives - Securezoo

EwDoor Botnet attacking AT&T network edge devices

Cybersecurity Attacks, Network Security, Vulnerabilities & Exploits / By Frank Crast / December 1, 2021 December 1, 2021 /

An attacker has been targeting unpatched AT&T network edge devices via a brand new botnet dubbed EwDoor.

Tags: AT&T, CVE-2017-6079, DDoS, Edge, EdgeMarc, EwDoor, malware, Network

Microsoft February 2021 Security Updates, warns of Win32k Privilege Escalation vulnerability exploited in wild (updated)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / February 12, 2021 February 12, 2021 /

Microsoft has released the February 2021 Security updates that includes patches for 56 vulnerabilities, 11 of those rated Critical. Moreover, the tech giant warned of a Win32k Privilege Escalation vulnerability CVE-2021-1732 exploited in wild.

Tags: .NET, Azure, CVE-2021-1732, Developer Tools, DNS Server, Edge, Exchange Server Office, IOT, Kubernetes, Microsoft Dynamics, PFX Encryption, PKU2U, PowerSHell, Skype for Business, SysInternals, System Center, TCP/IP, Visual Studio

Microsoft January 2021 Security Updates (to include zero-day RCE patch)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / January 13, 2021 January 13, 2021 /

Microsoft has released the January 2021 Security updates that includes patches for 83 vulnerabilities, 10 of those rated Critical and 1 zero-day RCE vulnerability CVE-2021-1647 in Microsoft Defender.

Tags: .NET, ASP.NET, Azure, CVE-2021-1643, CVE-2021-1647, CVE-2021-1658, CVE-2021-1660, CVE-2021-1665, CVE-2021-1666, CVE-2021-1667, CVE-2021-1668, CVE-2021-1673, CVE-2021-1705, Edge, Malware Protection Engine, Microsoft Edge, Microsoft Office, Microsoft Windows, SQL Server, Visual Studio, Windows

Microsoft: Widespread Adrozek malware campaign hijacks browsers on thousands of systems

Cybersecurity Attacks, Malware / By Frank Crast / December 12, 2020 December 12, 2020 /

Microsoft has sounded the alarm on a widespread Adrozek malware campaign that targeted thousands of systems to hijack browsers, inject ads on search results and even steal passwords.

Tags: Adrozek, browser, Chrome, Edge, Firefox, malware, polymorphic, Radioplayer, Windows, Yandex

Microsoft December 2020 Security Updates

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / December 9, 2020 December 9, 2020 /

Microsoft has released the December 2020 Security updates that includes patches for 58 vulnerabilities, 9 of them rated Critical.

Tags: Azure, ChakraCore, CVE-2020-17095, CVE-2020-17117, CVE-2020-17118, CVE-2020-17131, CVE-2020-17132, CVE-2020-17152, Dynamics, Edge, Exchange, Office, Visual Studio, Windows

Microsoft releases security update for Edge, zero-day exploited in the wild

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / October 26, 2020 October 26, 2020 /

Microsoft has released a security update for its Chromium-based Edge browser to address multiple vulnerabilities, one of those exploited in the wild (CVE-2020-15999).

Tags: CVE-2020-15999, Edge, Microsoft, Zero-day

Microsoft September 2020 Security and Adobe Updates

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / September 9, 2020 September 9, 2020 /

Microsoft has released the September 2020 Security updates that includes patches for 129 vulnerabilities, 24 of them rated Critical. Adobe also released updates for Experience Manager, Framemaker and InDesign.

Tags: ASP.NET, Azure DevOps, ChakraCore, CVE-2020-0878, CVE-2020-0908, CVE-2020-0922, CVE-2020-0997, CVE-2020-1057, CVE-2020-1129, CVE-2020-1172, CVE-2020-1182, CVE-2020-1200, CVE-2020-1210, CVE-2020-1252, CVE-2020-1285, CVE-2020-1319, CVE-2020-1452, CVE-2020-1453, CVE-2020-1460, CVE-2020-1508, CVE-2020-1576, CVE-2020-1593, CVE-2020-1595, CVE-2020-16857, CVE-2020-16862, CVE-2020-16874, CVE-2020-16875, Edge, Exchange Server, Internet Explorer, Microsoft Dynamics, Microsoft JET Database Engine, Microsoft Office, OneDrive, SQL Server, Visual Studio, Windows

Microsoft August 2020 Security and Adobe Updates

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / August 12, 2020 September 24, 2020 /

Microsoft has released August 2020 Security updates, that includes a patch for an actively attacked memory corruption vulnerability (CVE-2020-1380) in the Scripting Engine. Adobe also released updates for Adobe Acrobat and Reader, as well as Lightroom.

Tags: .NET Frame, .NET Framework, Acrobat, ASP.NET, ChakraCore, codecs, CVE-2020-1380, Edge, Internet Explorer, Microsoft, Office, SQL Server, Windows

Microsoft July 2020 Security Updates and patch for ‘Wormable’ RCE Vulnerability in Window DNS Server

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / July 14, 2020 July 14, 2020 /

Microsoft has released July 2020 Security updates, that includes an emergency patch for ‘a Wormable’ RCE Vulnerability CVE-2020-1350 dubbed “SIGRed” in Window DNS Server.

Tags: Azure, CVE-2020-1350, DNS, Edge, OneDrive, Skype, Visual Studio, Windows, Windows Defender

Microsoft June 2020 Security Updates (and a Critical Adobe Flash patch)

Uncategorized / By Frank Crast / June 10, 2020 June 10, 2020 /

Microsoft released the June 2020 Security Updates that includes 128 unique vulnerability fixes, 11 of those rated critical. In addition, Adobe patched a Critical vulnerability in Adobe Flash.

Tags: ChakraCore, CVE-2020-1073, CVE-2020-1181, CVE-2020-1213, CVE-2020-1216, CVE-2020-1219, CVE-2020-1248, CVE-2020-1260, CVE-2020-1281, CVE-2020-1286, CVE-2020-1299, CVE-2020-1300, Edge, Flash, HoloLens, Office, Visual Studio, Windows