Microsoft and Adobe Patch Tuesday, September 2024 Security Update Review

Microsoft's September Patch Tuesday updates are out, addressing a range of vulnerabilities across multiple products. Let's dive into the key updates and their implications. Microsoft Patch Tuesday for September 2024 Microsoft Patch's Tuesday, September 2024 edition addressed 79 vulnerabilities,...

Four zero-days included in group of 79 vulnerabilities Microsoft discloses, including one with 9.8 severity score

Microsoft disclosed four vulnerabilities that are actively being exploited in the wild as part of its regular Patch Tuesday security update this week in what's become a regular occurrence for the company's patches in 2024. Two of the zero-day vulnerabilities, CVE-2024-38226 and CVE-2024-38014,...

Akamai’s Perspective on August’s Patch Tuesday 2024

...

Talos discovers 11 vulnerabilities between Microsoft, Adobe software disclosed on Patch Tuesday

Cisco Talos Vulnerability Research team recently discovered 11 vulnerabilities in Microsoft Windows CLIPSP.SYS and Adobe Acrobat Reader that were all disclosed this week as part of the companys regular security updates. For more on Patch Tuesday, check out Talos blog post here. Eight of the...

Patch Tuesday - August 2024

Microsoft is addressing 88 vulnerabilities this August 2024 Patch Tuesday. Microsoft has evidence of in-the-wild exploitation and/or public disclosure for ten of the vulnerabilities published today, which is significantly more than usual. At time of writing, all six of the known-exploited...

Patch Tuesday - August 2024

Microsoft is addressing 88 vulnerabilities this August 2024 Patch Tuesday. Microsoft has evidence of in-the-wild exploitation and/or public disclosure for ten of the vulnerabilities published today, which is significantly more than usual. At time of writing, all six of the known-exploited...

Microsoft and Adobe Patch Tuesday, August 2024 Security Update Review

Microsoft’s August Patch Tuesday updates are out, and they address a range of vulnerabilities across multiple products. Let’s dive into the key updates and their implications. Microsoft Patch Tuesday for August 2024 Microsoft Patchs Tuesday, August 2024 edition addressed 102 vulnerabilities,...

Talos discovers Microsoft kernel mode driver vulnerabilities that could lead to SYSTEM privileges; Seven other critical issues disclosed

Microsoft disclosed six security vulnerabilities that are actively being exploited across its products as part of the companys regular Patch Tuesday security update. In all, Augusts monthly round of patches from Microsoft included 87 vulnerabilities, seven of which are considered critical. In...

ZDI Slams Microsoft for Not Crediting It in Last Week’s Patch Tuesday

Microsoft faces backlash from Zero Day Initiative ZDI and security researchers over lack of transparency in vulnerability disclosure…...

Void Banshee APT Exploits Microsoft MHTML Flaw to Spread Atlantida Stealer

An advanced persistent threat APT group called Void Banshee has been observed exploiting a recently disclosed security flaw in the Microsoft MHTML browser engine as a zero-day to deliver an information stealer called Atlantida. Cybersecurity firm Trend Micro, which observed the activity in mid-Ma...

A week in security (July 8 – July 14)

Last week on Malwarebytes Labs: "Nearly all" AT&T customers had phone records stolen in new data breach disclosure Fake Microsoft Teams for Mac delivers Atomic Stealer Dangerous monitoring tool mSpy suffers data breach, exposes customer details iPhone users in 98 countries warned about spyware by...

Akamai’s Perspective on July’s Patch Tuesday 2024

Patches are raining down like Independence Day fireworks. July 2024’s Patch Tuesday has 137 total CVEs and one vulnerability found in the wild...

Microsoft Patch Tuesday: Microsoft Patches 142 Critical Vulnerabilities

Microsoft plugs critical security holes in July Patch Tuesday! 142 vulnerabilities patched, including actively exploited zero-days and remote…...

Patch Tuesday - July 2024

Microsoft is addressing 139 vulnerabilities this July 2024 Patch Tuesday, which is on the high side in terms of typical CVE counts. They’ve also republished details for 4 CVEs issued by other vendors that affect Microsoft products. Microsoft has evidence of in-the-wild exploitation for 2 of the...

Microsoft and Adobe Patch Tuesday, July 2024 Security Update Review

Julys Patch Tuesday brings a midsummer wave of updates, addressing critical vulnerabilities and enhancing security across the Microsoft ecosystem. Lets discover the highlights from Microsofts Patch Tuesday updates for July 2024. Microsoft Patch Tuesday for July 2024 Microsoft Patch Tuesdays July...

Largest Patch Tuesday in 3 months includes 5 critical vulnerabilities

Microsoft released its monthly security update on Tuesday, disclosing 142 vulnerabilities across its suite of products and software. Of those, there are five critical vulnerabilities, and every other security issue disclosed this month is considered "important." This is the largest Patch Tuesday...

A week in security (June 10 – June 16)

Last week on Malwarebytes Labs: Truist bank confirms data breach Update now! Google Pixel vulnerability is under active exploitation Adobe clarifies Terms of Service change, says it doesn’t train AI on customer content 23andMe data breach under joint investigation in two countries When things go...

Akamai’s Perspective on June’s Patch Tuesday 2024

...

Black Basta Ransomware Suspected of Exploiting Windows 0-day Before Patch

The cybersecurity researchers at Symantec have found "strong evidence" suggesting that the Black Basta ransomware gang exploited a critical Windows vulnerability CVE-2024-26169 before it was patched by Microsoft on March 12, 2024, through its regular Patch Tuesday updates...

Patch Tuesday - June 2024

It’s June 2024 Patch Tuesday. Microsoft is addressing 51 vulnerabilities today, and has evidence of public disclosure for just a single one of those. At time of writing, none of the vulnerabilities published today are listed on CISA KEV, although this is always subject to change. Microsoft is...