PossibleThreat Articles

Articles for the experts…

Windows

ComputerWorld Independent 

Patch Tuesday alert: Make sure Windows Auto Update is temporarily disabled

0 Comments , ,

Credit to Author: Woody Leonhard| Date: Mon, 11 Nov 2019 05:03:00 -0800

For those of you who haven’t patched since May, there’s exceedingly bad news on the horizon. Per Catalin Cimpanu at ZDNet, Metasploit’s working-but-just-barely BlueKeep exploit is about to get a significant bug fix. That’ll put BlueKeep infection capabilities in the hands of mere mortals. The script kiddies won’t be far behind.

If you’re using — or you know someone who’s using — Windows XP, Vista, Win7, Server 2003, Server 2008 or Server 2008 R2, get patched nowThe fix is easy. Even  Aunt Martha can handle it.

To read this article in full, please click here

Read more
Security Sophos 

Office for Mac 2011 users warned about SYLK file format

0 Comments , , , , , , , , , , ,

Credit to Author: John E Dunn| Date: Tue, 05 Nov 2019 17:14:21 +0000

Still running Office 2011 on a Mac? If so, there are at least two reasons why that might not be a good idea.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/HjBh551ovHI” height=”1″ width=”1″ alt=””/>

Read more
ComputerWorld Independent 

With a few exceptions, all’s clear to install Microsoft’s October patches

0 Comments , ,

Credit to Author: Woody Leonhard| Date: Fri, 01 Nov 2019 09:54:00 -0700

If you had automatic update turned on at the beginning of October, you got clobbered with a bug-infested, out-of-band update for an IE-related zero-day that never appeared in real life. Later in the month, those with automatic update turned on were treated to a wide assortment of bugs (Start and Search fails, RDP redlines, older Visual Basic program blasts) – only some of which were solved with the month’s final, optional, non-security patches.

To read this article in full, please click here

Read more
ComputerWorld Independent 

Microsoft Patch Alert: October updates bring problems with Start, RDP, Ethernet, older VB programs

0 Comments , , , ,

Credit to Author: Woody Leonhard| Date: Tue, 29 Oct 2019 12:18:00 -0700

October started out on an extraordinarily low note. On Oct. 3, Microsoft released an “out of band” security update to protect all Windows users from an Internet Explorer scripting engine bug, CVE-2019-1367, once thought to be an imminent danger to all things (and all versions) Windows.

It was the third attempt to fix that security hole and each of the versions brought its own set of bugs.

To read this article in full, please click here

Read more
Security Sophos 

Update now! Windows users targeted by iTunes Software Updater zero-day

0 Comments , , , , , , , , ,

Credit to Author: John E Dunn| Date: Tue, 15 Oct 2019 12:06:07 +0000

The flaw is a rare ‘unquoted path class’ described as “so thoroughly documented that you would expect programmers to be well aware…” But that’s not the case.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/PLucYEnVB5k” height=”1″ width=”1″ alt=””/>

Read more
Security Sophos 

Microsoft fixes drop in number for October, 2019 updates

0 Comments , , , , , , , , , , , ,

Credit to Author: SophosLabs Offensive Security| Date: Wed, 09 Oct 2019 20:00:31 +0000

A relatively low number of vulnerabilities were addressed in this month’s Windows update rollups<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/kC7qjGbuUh8″ height=”1″ width=”1″ alt=””/>

Read more