News/Intelligence/IOCs Stories New Meta information stealer distributed in malspam campaign – LINK EU officials were targeted with Israeli surveillance software – LINK FBI, Europol Seize RaidForums Hacker Forum and Arrest Admin – LINK Enemybot: a new Mirai, Gafgyt hybrid botnet joins the scene – LINK Clueless hackers spent months inside a network and nobody noticed. […]
Tag: windows
Updates as of 4/1/2022
News/Intelligence/IOCs Stories New AcidRain data wiper malware targets modems and routers – LINK Chinese hacking group uses new ‘Fire Chili’ Windows rootkit – LINK Researchers used a decommissioned satellite to broadcast hacker TV – LINK Belarusian ‘Ghostwriter’ Actor Picks Up BitB for Ukraine-Related Attacks – LINK The Windows Update policies you should set and why […]
Updates as of 3/28/2022
NOTE: I am thinking of changing the design a bit to instead of having one post per item, to one post per day with everything. Here is a first try CISA – Adds 32 Known Exploited Vulnerabilities to Catalog – LINK – CSV Download Link CISA – Vulnerability Summary for the Week of March 21, […]
Microsoft Patch Tuesday for March – 71 flaws, 3 zero-days
LINK Time to patch!
Active Attack: Malware Authors Already Targeting Windows LPE Zero-Day
LINK CVE-2021-41379 is out there and active. No update yet from Microsoft.
Windows PetitPotam Vulnerability found in MS-EFSRPC protocol
LINK Essentially, the abuse of the old NTLM protocol is happening. Something that needs to be investigated for immediate retirement on your network.
Microsoft releases a workaround for the “SeriousSAM” vulnerability
LINK A serious elevation of privilege flaw found could allow a local attacker run their own code with sys privs. Read the article closely for the way this is resolved and to confirm if you are in fact vulnerable.
Print Nightmare – Episode n(n+1)
LINK I know I have missed one or two new PrintNightmare updates with NEW vulnerabilities. Its time if you have not to immediately disable the Print Spooler unless you absolutely need it. PERIOD.
Microsoft releases PrintNightmare update
LINK If you have Windows…we have an update for you.
Urgent – Windows Print Spooler vulnerability becomes a RCE with a PoC
LINK LINK MS Patched CVE-2021-1675 in the beginning of June however, the patch doesn’t fix the vulnerability on Windows Server 2019 it looks. This looks to be a nightmare coming and more will come out on this.