Hacker News report Microsoft release patch for actively exploited Windows Zero-Day Vulnerability

joomla help support cheshire manchester merseyside north west uk14 September 2021.

The Hacker News report that "Microsoft has pushed software fixes as part of its monthly Patch Tuesday release cycle to plug 66 security holes affecting Windows and other components ... including an actively exploited zero-day in its MSHTML Platform that came to light last week."

"Of the 66 flaws, three are rated Critical, 62 are rated Important, and one is rated Moderate in severity."

This report follows previous reports of issues affecting Internet Explorer and the Windows Print Spooler Component. See links below.

A zero-day attack patch is issued by developers when they discover a flaw which has been exploited without their knowledge. 

Source: The Hacker News.

Read more: Microsoft Releases Patch for Actively Exploited Windows Zero-Day Vulnerability.

 

Heads Up

A New Bug in Microsoft Windows Could Let Hackers Easily Install a Rootkit

23 September 2021

The Hacker News reported that "Security researchers have disclosed an unpatched weakness in Microsoft Windows Platform Binary Table (WPBT) affecting all Windows-based devices since Windows 8 that could be potentially exploited to install a rootkit and compromise the integrity of devices."

"In response to the findings, Microsoft has recommended using a Windows Defender Application Control (WDAC) policy to tightly control what binaries can be permitted to run on the devices."

Read more: A New Bug in Microsoft Windows Could Let Hackers Easily Install a Rootkit.

 

Windows MSHTML 0-Day Exploited to Deploy Cobalt Strike Beacon in Targeted Attacks

16 September 2021

"MSHTML (aka Trident) is a software component used to render web pages on Windows. Although it’s most commonly associated with Internet Explorer, it is also used in other software including versions of Skype, Microsoft Outlook, Visual Studio, and others." Source: Malwarebytes LABS.

THe Hacker News reported that "Microsoft ... (has) disclosed details of a targeted phishing campaign that leveraged a now-patched zero-day flaw in its MSHTML platform using specially-crafted Office documents to deploy Cobalt Strike Beacon on compromised Windows systems."

Make sure the Windows you are using is up to date at all times.

Read more: Windows MSHTML 0-Day Exploited to Deploy Cobalt Strike Beacon in Targeted Attacks.

 

New 0-Day Attack Targeting Windows Users With Microsoft Office Documents

7 September 2021

Hacker News reported:

"Microsoft (have) warned of an actively exploited zero-day flaw impacting Internet Explorer that's being used to hijack vulnerable Windows systems by leveraging weaponized Office documents. Microsoft, upon completion of the investigation, is expected to either release a security update as part of its Patch Tuesday monthly release cycle or issue an out-of-band patch "depending on customer needs." In the interim, the Windows maker is urging users and organizations to disable all ActiveX controls in Internet Explorer to mitigate any potential attack."

Source: New 0-Day Attack Targeting Windows Users With Microsoft Office Documents.

 

Microsoft Warned of Another Unpatched Windows Print Spooler RCE Vulnerability

11 August 2021

Hacker News reported:

"A day after releasing Patch Tuesday updates, Microsoft acknowledged yet another remote code execution vulnerability in the Windows Print Spooler component, adding that it's working to remediate the issue in an upcoming security update."

Source: Microsoft Warns of Another Unpatched Windows Print Spooler RCE Vulnerability.

Related News: Hacker News report ransomware gangs exploiting Windows Print Spooler Vulnerabilities.

 

Update Microsoft Windows to the latest release

By default the Windows OS should update automatically.

But to be on the safe side, you should still check you are using the latest release.

"To install the latest security updates, Windows users can head to Start > Settings > Update & Security > Windows Update, or by selecting Check for Windows updates." (Hacker News).

 

About The Hacker News

"The Hacker News (THN) is a leading, trusted, widely-acknowledged dedicated cybersecurity news platform, attracting over 8 million monthly readers including IT professionals, researchers, hackers, technologists, and enthusiasts."

Subscribe to The Hacker News newsletter when you visit the following link.

Read more: About 'The Hacker News' Media.

 

Protect your device, browser & web connection

When thinking about website security, it is easy to overlook the:

  • device (operating system) used to connect to your website,
  • the way you connect (your web browser) to the internet, and
  • how you connect (in the clear or via encryption).

Read more: Protect your device, browser & web connection.

 

Make Joomla! CMS Security YOUR #1 Priority

joomla support cheshire manchester merseyside north west ukWe offer Joomla! coaching, help and support to businesses and organisations across Cheshire, Manchester, Merseyside, North West England & the UK.

Learn how to manage Joomla! website security.