CVE-2020-1002

An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'...

CVE-2020-1002

CVE-2020-1002 is an elevation of privilege vulnerability in Microsoft Defender linked to MpSigStub.exe, enabling an attacker who is logged on to delete files in arbitrary locations. The issue requires local access and user interaction-free exploitation via a specially crafted command, with exploi...

CVE-2020-0835

An elevation of privilege vulnerability exists when Windows Defender antimalware platform improperly handles hard links, aka 'Windows Defender Antimalware Platform Hard Link Elevation of Privilege Vulnerability'...

CVE-2020-0835

CVE-2020-0835 affects Microsoft Windows Defender Antimalware Platform. The root cause is improper handling of hard links in the Defender engine, enabling local elevation of privilege when a user runs a crafted program on affected systems. Public sources note the vulnerability exists in Defender a...

Microsoft Defender Antimalware Platform EoP Vulnerability (Apr 2020)

This host is missing an important security update according to Microsoft Security Updates released for Microsoft Defender Antimalware Platform dated 14th April 2020 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

Microsoft Defender Elevation of Privilege Vulnerability (Apr 2020)

This host is missing an important security update according to Microsoft Security Updates released for Microsoft Malware Protection Engine dated 23-09-2019 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

April Patch Tuesday: Microsoft Battles 4 Bugs Under Active Exploit

Microsoft has released its April 2020 Patch Tuesday security updates, its first big patch update released since the work-from-home era truly got underway. It’s a doozie, with the tech giant disclosing 113 vulnerabilities. Out of these, 19 are rated as critical, and 94 are rated as important...

Microsoft Defender Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted command that could exploit the...

Windows Defender Antimalware Platform Hard Link Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Windows Defender antimalware platform improperly handles hard links. An attacker who successfully exploited this vulnerability could overwrite a targeted file leading to an elevated status. To exploit this vulnerability, an attacker would first...

KLA11747 Multiple vulnerabilities in Mycrosoft System Center

Multiple vulnerabilities were found in Mycrosoft System Center. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Defender can be exploited remotely via specially crafted comma...

Anti-malware platform update for Windows Defender is available in Windows 8

Anti-malware platform update for Windows Defender is available in Windows 8 Introduction This article describes an anti-malware platform update for Windows Defender that is available in Windows 8. This anti-malware platform update for Windows Defender updates Windows Defender services, drivers, a...

August 2015 anti-malware platform update for Windows Defender in Windows 8.1 and Windows 8

August 2015 anti-malware platform update for Windows Defender in Windows 8.1 and Windows 8 This anti-malware platform update for Windows Defender updates Windows Defender services, drivers, and UIs in Windows RT 8.1, Windows 8.1, Windows RT, and Windows 8. This update has prerequisites. Microsoft...

The Results Are In: Defender Confidence Is On The Rise

Recently, I spent two weeks traveling across Europe talking with defenders, reporters, and leaders of security programs. While each country faces its own unique challenges and has its own needs, there were a few themes that were consistently present. Threat Outlook Report 2020. Naturally, we...

Microsoft Defender ATP can help you secure your remote workforce

As the number of home-based workers has accelerated in the last few weeks, it’s introduced new challenges. You may want to expand the number and types of devices employees can use to access company resources. You need to support a surge in SaaS usage. And it’s important to adjust security policie...

Revamped HawkEye Keylogger Swoops in on Coronavirus Fears

There’s a new variant of the HawkEye keylogging malware making the rounds, featuring expanded info-stealing capabilities. Its operators are looking to capture the zeitgeist around the novel coronavirus. It’s being distributed using spam that purports to be an “alert” from the Director-General of...

Revamped HawkEye Keylogger Swoops in on Coronavirus Fears

There’s a new variant of the HawkEye keylogging malware making the rounds, featuring expanded info-stealing capabilities. Its operators are looking to capture the zeitgeist around the novel coronavirus. It’s being distributed using spam that purports to be an “alert” from the Director-General of...

Protecting against coronavirus themed phishing attacks

The world has changed in unprecedented ways in the last several weeks due to the coronavirus pandemic. While it has brought out the best in humanity in many ways, as with any crisis it can also attract the worst in some. Cybercriminals use people’s fear and need for information in phishing attack...

The vulnerability of the Windows Defender Security Center application for Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the Windows Defender Security Center application for Windows operating systems is related to incorrect handling of objects in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges by executing a specially created command...

The vulnerability of the Windows Defender Security Center application for Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the Windows Defender Security Center application for Windows operating systems is related to incorrect handling of objects in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges by executing a specially created command...

Forrester names Microsoft a Leader in 2020 Enterprise Detection and Response Wave

I’m proud to announce that Microsoft is positioned as a Leader in The Forrester Wave: Enterprise Detection and Response, Q1 2020. Among the Leaders in the report, Microsoft received the highest score in the current offering category. Microsoft also received the highest score of all participating...