As part of its August monthly update, Microsoft has applied a temporary patch to a critical elevation of privilege flaw which can be exploited by attackers to take over Windows Servers running as domain controllers, as well as host computers in enterprise networks. Tracked as CVE-2020-1472, also dubbed as Zerologon and Netlogon Elevation of Privilege continue reading : Microsoft’s Zerologon Vulnerability (CVE-2020-1472)
A critical remote code execution tracked as CVE-2020-1147 affecting Microsoft Sharepoint servers has been patched by Microsoft. The vulnerability resides in two .NET components, namely DataSet and DataTable, used for managing data sets, and stems from the fact the software fails to check the source markup of XML file input. The vulnerability also exists in continue reading : Microsoft SharePoint Vulnerability (CVE-2020-1147)
Cybercriminals claiming to be Fancy Bear and Armada Collective have been observed to be threatening organizations from different sectors with distributed denial of service (DDoS) attacks. They are trying to extort money from the organization by demanding ransom payment in order to prevent the alleged DDoS attacks. The threat actors sent extortion emails to target continue reading : DDoS Attack Extortion Campaign Impersonates Fancy Bear and Armada Collective
Microsoft has patched over one-hundred twenty (120) vulnerabilities across thirteen (13) of its products as part of its monthly security and non-security update. Two of the addressed flaws have reportedly been exploited in the wild as a zero-day, likely as part of a targeted attack. A spoofing vulnerability tracked as CVE-2020-1464 affecting Windows Operating System continue reading : Microsoft’s Two Zero-Day Vulnerability (CVE-2020-1464 and CVE-2020-1380)
A critical vulnerability, tracked as (CVE-2020-1350), affecting Windows Server versions 2003 to 2019 has been patched after being existed in the system’s code for almost 17 years. Also known as SigRed, the 17-year-old ‘wormable’ remote code execution (RCE) vulnerability could propagate itself across vulnerable machines in a network without the need of any user interaction. continue reading : SigRed Remote Code Execution Vulnerability (CVE-2020-1350)