Microsoft Releases January 2025 Patch Tuesday Security Updates

Microsoft has released its January 2025 Patch Tuesday security updates to address multiple vulnerabilities across its products, including three that have been detected as exploited in the wild (CVE-2025-21333, CVE-2025-21334, and CVE-2025-21335). Based on the official Microsoft release notes, there are 159 CVEs affecting Microsoft products, 12 of which are classified as ‘Critical,’ while the continue reading : Microsoft Releases January 2025 Patch Tuesday Security Updates

PUBLIC ADVISORY: Beware of “RAPP Company”claiming collaboration with CERT-PH

The Cybersecurity Bureau’s CERT-PH has received numerous inquiries regarding the legitimacy of a certain “RAPP account,” which claims to restore accounts in exchange for a fee. Please be informed that NCERT has no official engagement or collaboration with the RAPP company concerning account restoration services.   As the national computer emergency response team under the Cybersecurity continue reading : PUBLIC ADVISORY: Beware of “RAPP Company”claiming collaboration with CERT-PH

PUBLIC ADVISORY: GUIDELINES ON SECURING SYSTEMS AGAINST MALICIOUS USE OF MSBUILD TOOL

The Department of Information and Communications Technology (DICT) – Cybersecurity Bureau – CERT-PH has recently observed malicious activities targeting various government agencies, leveraging the Microsoft Build Engine (MSBuild) tool. This advisory provides guidelines on detecting, removing, and mitigating threats posed by the misuse of MSBuild.What is MSBuild? Microsoft Build Engine (MSBuild) is a tool used continue reading : PUBLIC ADVISORY: GUIDELINES ON SECURING SYSTEMS AGAINST MALICIOUS USE OF MSBUILD TOOL

Microsoft Releases November 2024 Patch Tuesday Security Updates

Microsoft has released its November 2024 Patch Tuesday security updates to fix multiple vulnerabilities across its products. Based on the official Microsoft release notes, there are 89 Microsoft CVEs, of which two of the vulnerabilities are detected being exploited in the wild(CVE-2024-43451 and CVE-2024-49039). _____________________________ A. List of the Vulnerabilities Kindly check the link below continue reading : Microsoft Releases November 2024 Patch Tuesday Security Updates

Understanding Volt Typhoon: Key IOCs and TTPs

Volt Typhoon has been active since at least 2021 and primarily targets U.S government and defense organizations for intelligence-gathering purposes. The group exploits vulnerable internet-facing servers to gain initial access and leverage living off the land binaries (LOLBin) for evasion purposes. In February 2024, the Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), continue reading : Understanding Volt Typhoon: Key IOCs and TTPs