How to protect the enterprise from holiday attacks
Attackers often take advantage of the holidays to launch attacks. Use these Microsoft settings to deter them.
Windows
Will Microsoft stop updating its Security Essentials on Jan. 14? Are you sure?
Credit to Author: Woody Leonhard| Date: Fri, 13 Dec 2019 06:52:00 -0800
You know that businesses will be able to pay for Win7 security patches after Win7 hits end-of-life on Jan. 14. Many of Microsoft’s Extended Security Update program details aren’t clear to me — How does a very small business buy ESU? Why is Microsoft releasing Edge on Win7 the day after it goes end-of-life? Will that new full-screen nag keep coming back? — but there’s one loose end that sits in the middle of my confusion.
Windows 10 Mobile recibe sus últimos parches de seguridad
Credit to Author: Naked Security| Date: Thu, 12 Dec 2019 19:25:34 +0000
Si eres uno de los pocos que todavía usa Windows 10 Mobile, el 10 de diciembre de 2019 ha sido el día que has temido desde hace casi un año. Según lo anunciado por Microsoft en enero de 2019, es la fecha de finalización de la versión 1709 del sistema operativo, lo que significa que […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/aO1YokmD_iI” height=”1″ width=”1″ alt=””/>
Read moreDecember Patch Tuesday blunts WizardOpium attack chain
Credit to Author: John E Dunn| Date: Thu, 12 Dec 2019 10:42:32 +0000
December 2019’s Patch Tuesday updates are, including a fix for the Windows flaw used in recently discovered WizardOpium attacks.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/PoQEqUB0h3I” height=”1″ width=”1″ alt=””/>
Read morePatch Tuesday brings a reprise of the Autopilot debacle, now quashed, and another Win7 nag
Credit to Author: Woody Leonhard| Date: Wed, 11 Dec 2019 07:33:00 -0800
Patch Tuesday in December rarely brings anything worthwhile — everybody’s on vacation, or wants to be on vacation — and this month’s no exception. We got patches for 36 separately identified security holes and two new advisories, full of sound and fury but covering very little.
The one “exploited” security hole — CVE-2019-1458 Win32k Elevation of Privilege Vulnerability — shouldn’t cause any heartburn. Microsoft says:
Windows 10 Mobile receives its last security patches
Credit to Author: John E Dunn| Date: Wed, 11 Dec 2019 11:24:08 +0000
If you’re one of the tiny hardcore still using Windows 10 Mobile, 10 December 2019 is probably a day you’ve been dreading for nearly a year.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/w-H0FgJ8FqU” height=”1″ width=”1″ alt=””/>
Read more
A Lighter-than-normal Patch Tuesday for December, 2019
Credit to Author: alexandrebecholey| Date: Wed, 11 Dec 2019 00:36:22 +0000
There may be a smaller overall tally of things to fix this month than in recent update cycles, but at least one bug is being exploited in the wild<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/gu6tev4DC1Q” height=”1″ width=”1″ alt=””/>
Read moreMicrosoft to end updates to Windows 7's free AV software, Security Essentials
Credit to Author: Gregg Keizer| Date: Mon, 09 Dec 2019 11:05:00 -0800
Microsoft will not provide new malware signatures for its home-grown Security Essentials software after it retires Windows 7 in five weeks.
“No, your Windows 7 computer is not protected by MSE ((Microsoft Security Essentials)) after January 14, 2020,” the company said in a support document mainly concerned about the Extended Security Updates (ESU) being shilled to enterprises. “MSE is unique to Windows 7 and follows the same lifecycle dates for support.”
Security Essentials, a free antivirus (AV) program that launched in 2008, was originally limited to consumers. However, in 2010, Microsoft expanded the licensing to small businesses, defined as those with 10 or fewer PCs. Two years after that, MSE was replaced by Windows Defender with the launch of Windows 8.
All’s clear to install Microsoft’s November patches
Credit to Author: Woody Leonhard| Date: Thu, 05 Dec 2019 07:46:00 -0800
The November passel of patches didn’t include anything earth-shattering; there were no emergency security breaches storming the gates, but good patching hygiene dictates that you get your machine braced for the next round.
If you install patches manually one by one (“Group B,” which I don’t recommend for mere mortals), you need to make sure you have the proper Servicing Stack Updates in place. They’ve all changed in the past month.