Microsoft has released the October 2020 Security updates that includes patches for 87 vulnerabilities, 11 of them rated Critical. The update also includes a patch for a Critical "Bad Neighbor" vulnerability and two out-of-band patches.
Security experts from Microsoft have observed a cyber threat actor dubbed GADOLINIUM that uses new attack techniques via cloud services and open source tools.
Cybersecurity criminals are continuing to change threat tactics by leveraging more fileless malware and duel-use tools to attack organizations.
Microsoft has released updates to address a feature bypass vulnerability in PowerShell Core versions 6.1 and 6.2. Users should upgrade to the latest PowerShell versions to prevent an attacker from taking over affected systems.
Microsoft issued the November 2018 Security Updates that include 62 unique vulnerability fixes, 12 of them rated critical.
Microsoft issued the October 2018 Security Updates that include nearly 50 unique vulnerability fixes, 12 of them rated critical.
Microsoft issued July 2018 Security Updates that include 54 unique vulnerability fixes, 17 of them rated critical.
Trend Micro researchers discovered attackers are exploiting a previously patched Windows vulnerability (CVE-2017-11882) by abusing the Windows Installer service, msiexec.exe, to deliver LokiBot malware.
McAfee Advanced Threat Research analysts have spotted new malicious techniques used by the APT28 threat group.