Microsoft has released updates to address a feature bypass vulnerability in PowerShell Core versions 6.1 and 6.2. Users should upgrade to the latest PowerShell versions to prevent an attacker from taking over affected systems.
Microsoft issued the November 2018 Security Updates that include 62 unique vulnerability fixes, 12 of them rated critical.
Microsoft issued the October 2018 Security Updates that include nearly 50 unique vulnerability fixes, 12 of them rated critical.
Microsoft issued July 2018 Security Updates that include 54 unique vulnerability fixes, 17 of them rated critical.
Trend Micro researchers discovered attackers are exploiting a previously patched Windows vulnerability (CVE-2017-11882) by abusing the Windows Installer service, msiexec.exe, to deliver LokiBot malware.
McAfee Advanced Threat Research analysts have spotted new malicious techniques used by the APT28 threat group.