Microsoft April 2018 patch updates

Microsoft issued April 2018 Security Updates that include at least 63 vulnerability fixes, 22 of them rated critical. The updates address multiple Microsoft products to include Windows, Internet Explorer, Edge, Office, Office Services and Web Apps, ChakraCore, Visual Studio, Malware Protection Engine and Adobe Flash.

Continue Reading →

Microsoft CredSSP vulnerability updates

Microsoft issued new security guidance on the Credential Security Support Provider protocol (CredSSP) vulnerability (CVE-2018-0886) that could allow remote code execution. As part of the updates, Microsoft plans to soon prevent un-patched RDP clients (that uses CredSSP) from authenticating to Windows.

Continue Reading →