Windows – Page 12 – PossibleThreat Articles

How to manually update Microsoft Defender

February 2, 2022 0 Comments IDG Insider, Microsoft, Security, small and medium business, Windows, Windows 10, windows 11

Credit to Author: Ed Tittel| Date: Tue, 04 Jan 2022 03:00:00 -0800

Microsoft Defender is the built-in anti-malware package that’s included with modern Windows operating systems. It’s alternatively known as Windows Security (it shows up under Settings as Windows Security) or Windows Defender (sometimes with Antivirus at the end of the name, as in this Microsoft Docs page). But whatever you want to call it, for many Windows users, this tool is the go-to default for handling security on their PCs.

To read this article in full, please click here

(Insider Story)

Security Sophos

Patch now! Microsoft releases fixes for the serious SMB bug CVE-2020-0796

March 17, 2020 0 Comments 2020-03, cve-2020-0796, Exploit, Patch Tuesday, smb, smbv3, SophosLabs Uncut, updates, Windows

Credit to Author: alexandrebecholey| Date: Thu, 12 Mar 2020 15:34:59 +0000

Microsoft issues its latest set of cumulative updates for Windows and other Microsoft products this week, but the March, 2020 Patch Tuesday is notable not only because of the sheer volume of fixes, but because it will prevent one very serious bug in its Server Message Block (SMB) technology (download the patch right now) that […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/d5Hn2Ie7ee4″ height=”1″ width=”1″ alt=””/>

Security Sophos

Microsoft patches wormable Windows 10 ‘SMBGhost’ flaw

March 17, 2020 0 Comments Flaw, Microsoft, notpetya, Operating Systems, Patching, security threats, smb, smbghost, vulnerability, WannaCry, Windows, Windows 10

Credit to Author: John E Dunn| Date: Mon, 16 Mar 2020 11:58:56 +0000

What’s the difference between a scheduled security update and one that’s out-of-band? In this case, it’s two days.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/OqgpMudTrew” height=”1″ width=”1″ alt=””/>

ComputerWorld Independent

Take your time, get it right for March Patch Tuesday

March 17, 2020 0 Comments Microsoft Office, PCs, Security, Windows

Credit to Author: Greg Lambert| Date: Thu, 12 Mar 2020 11:41:00 -0700

This is a big update to the Windows platform for the Microsoft March Patch Tuesday release cycle. Consisting of 115 patches, mostly to the Windows desktop, with almost all of the critical issues relating to browser-based scripting engine memory issues, this will be a difficult set of updates to release and manage.

The testing profile for the Windows desktop platform is very large, with a lower than usual exploitability/risk rating. For this month, we do not have any reports of publicly exploited or disclosed vulnerabilities (zero-days), so my recommendation is to take your time, test the changes to each platform, create a staged rollout plan and wait for future (potentially) imminent changes from Microsoft.

To read this article in full, please click here

ComputerWorld Independent

Come on, Microsoft! Is it really that hard to update Windows 10 right?

March 17, 2020 0 Comments Microsoft, Security, Windows

Credit to Author: Steven J. Vaughan-Nichols| Date: Wed, 11 Mar 2020 07:47:00 -0700

Yesterday, on Patch Tuesday, as I was finishing up the column that follows lamenting the sorry state of Windows 10 patches and providing copious examples of things gone very wrong, a big, fat example landed in my lap (but happily not in my laptop). Word emerged that Microsoft had accidentally leaked news about a new Server Message Block (SMB) bug with a maximum severity rating, a.k.a. SMBGhost. The leak also said that this bug wasn’t patched in that day’s releases.

To read this article in full, please click here

ComputerWorld Independent

Patch Tuesday’s tomorrow. We're in uncharted territory. Get Automatic Updates paused.

March 17, 2020 0 Comments Microsoft, Security, Windows

Credit to Author: Woody Leonhard| Date: Mon, 09 Mar 2020 07:06:00 -0700

It’s always a good idea to pause Windows updates just before they hit the rollout chute. This month, we’re facing two extraordinary issues that you need to take into account. Wouldn’t hurt if you told your friends and family, too.

Take last month’s Windows patches. Please. We had one patch, KB 4524244, that slid out on Patch Tuesday, clobbered an unknown number of machines (HP PCs with Ryzen processors got hit hard), then remained in “automatic download” status until it was finally pulled on Friday. We had another patch, KB 4532693, that gobbled desktop icons and moved files while performing a nifty trick with temporary user profiles. Microsoft never did fix that one.

To read this article in full, please click here

Security Sophos

Nvidia patches severe flaws affecting GeForce, Quadro NVS and Tesla

March 3, 2020 0 Comments cve vulnerabilities, cve‑2020‑5957, cve‑2020‑5958, cve‑2020‑5959, cve‑2020‑5960, cve‑2020‑5961, CVEs, geforce, gpu display, Linux, malware, Microsoft, NVIDIA, nvidia gpu, nvs, Operating Systems, Patches, Patching, quadro, security threats, tesla, vulnerability, Windows, windows gpu display driver

Credit to Author: John E Dunn| Date: Tue, 03 Mar 2020 11:09:05 +0000

In all, the update covers five Windows and Linux desktop CVE vulnerabilities, including one rated as critical.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/YitOMgSO498″ height=”1″ width=”1″ alt=””/>

ComputerWorld Independent

Microsoft Patch Alert: February 2020 patches bring fire and ice but seem to have settled – finally.

February 26, 2020 0 Comments Microsoft, Microsoft Office, PCs, Security, Windows

Credit to Author: Woody Leonhard| Date: Wed, 26 Feb 2020 09:44:00 -0800

The real stinker this month, KB 4524244, rolled out the automatic update chute for four full days until Microsoft yanked it – leaving a trail of wounded PCs, primarily HP machines, in its wake. The other big-time bug in this month’s patches, a race condition in the KB 4532693 Win10 version 1903 and 1909 cumulative update installer, hasn’t been officially acknowledged by Microsoft outside of a blog post. But at least it’s well known and understood.

Folks running SQL Server and Exchange Server networks need to get patched right away.

Win10 UEFI update KB 4524244 blockages

Patch Tuesday brought KB 4524244 for Windows 10 owners, a bizarre single-purpose patch apparently directed at one specific UEFI bootloader. I talked about it last week.

To read this article in full, please click here

ComputerWorld Independent

The mess behind Microsoft’s yanked UEFI patch KB 4524244

February 20, 2020 0 Comments Microsoft, Security, Windows

Credit to Author: Woody Leonhard| Date: Thu, 20 Feb 2020 06:23:00 -0800

Remember the warning about watching how sausage is made? This is an electronic sausage-making story with lots of dirty little bits.

First, the chronology. On February’s Patch Tuesday, Microsoft released a bizarre standalone security patch, KB 4524244, which was then called “Security update for Windows 10, version 1607, 1703, 1709, 1803, 1809, and 1903: Feb. 11, 2020.” The name has changed, but bear with me.

The original problems with KB 4524244

That patch had all sorts of weird hallmarks as I discussed at the time:

To read this article in full, please click here

Security Sophos

Nearly half of hospital Windows systems still vulnerable to RDP bugs

February 20, 2020 0 Comments BlueKeep, dejablue, Government security, Medical Devices, Microsoft, nhs, Operating Systems, security threats, vulnerability, Windows, wormable, worms

Credit to Author: Danny Bradbury| Date: Thu, 20 Feb 2020 13:58:46 +0000

Almost half of connected hospital devices are still exposed to the wormable BlueKeep Windows flaw nearly a year after it was announced, according to a report released this week.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/wGhEwriWtkU” height=”1″ width=”1″ alt=””/>