May’s Patch Tuesday haul touches a six-pack of product families
Credit to Author: Angela Gunn| Date: Tue, 09 May 2023 19:27:52 +0000
A relatively light month by the numbers, but several patches require extra effort to deploy
Read morebootkit
Update now! May 2023 Patch Tuesday tackles three zero-days
Categories: Exploits and vulnerabilities Categories: News Tags: Microsoft Tags: CVE-2023-29336 Tags: CVE-2023-24932 Tags: bootkit Tags: CVE-2023-29325 Tags: Outlook Tags: preview Tags: CVE-2023-24941 Tags: Apple Tags: Cisco Tags: Google Tags: Android Tags: VMWare Tags: SAP Tags: Mozilla Microsoft’s Patch Tuesday round up for May 2023 includes patches for three zero-day vulnerabilities and one critical remote code execution vulnerability |
The post Update now! May 2023 Patch Tuesday tackles three zero-days appeared first on Malwarebytes Labs.
Read morePatch Tuesday: Microsoft fixes a zero-day, and two curious bugs that take the Secure out of Secure Boot
Credit to Author: Paul Ducklin| Date: Wed, 12 Apr 2023 18:57:23 +0000
Is Secure Boot without the Secure just “Boot”?
Read moreMicrosoft fixes a zero-day – and two curious bugs that take the Secure out of Secure Boot
Credit to Author: Paul Ducklin| Date: Wed, 12 Apr 2023 12:57:23 +0000
Is Secure Boot without the Secure just “Boot”?
Read moreGuidance for investigating attacks using CVE-2022-21894: The BlackLotus campaign
Credit to Author: Microsoft Security Threat Intelligence – Editor| Date: Tue, 11 Apr 2023 17:00:00 +0000
This guide provides steps that organizations can take to assess whether users have been targeted or compromised by threat actors exploiting CVE-2022-21894 via a Unified Extensible Firmware Interface (UEFI) bootkit called BlackLotus.
The post Guidance for investigating attacks using CVE-2022-21894: The BlackLotus campaign appeared first on Microsoft Security Blog.
Read more