Security 10816 Published by Philipp Esselbach 0

Microsoft has issued 72 CVEs, including System Center Operations Manager, Microsoft Office, Microsoft Edge (Chromium-based), Microsoft Defender for Endpoint. Microsoft Office SharePoint, GitHub, Microsoft Office Word, Microsoft Office Excel, Windows Task Scheduler, Windows Mobile Broadband, Windows Kernel-Mode Drivers, Windows Remote Desktop Services, Windows Virtualization-Based Security (VBS) Enclave, Windows Resilient File System (ReFS), Windows PrintWorkflowUserSvc, Windows Message Queuing, Windows Wireless Wide Area Network Service, Windows LDAP - Lightweight Directory Access Protocol, and Wi Windows Remote Desktop Services.

Security 10816 Published by Philipp Esselbach 0

The Microsoft November 2024 security update release includes 89 Microsoft CVEs, including Windows Package Library Manager, SQL Server, Microsoft Virtual Hard Drive, Windows SMBv3 Client/Server, Windows USB Video Driver, Windows DNS, Windows NTLM, Windows Registry, SQL Server,.NET and Visual Studio, Windows Update Stack, LightGBM, Azure CycleCloud, Azure Database for PostgreSQL, Windows Telephony Service, Windows NT OS Kernel, Windows Hyper-V, Windows VMSwitch, Windows Telephony Service, Windows DWM Core Library, Windows Kernel, Windows Secure Kernel Mode, Windows USB Video Driver, Windows DWM Core Library, Windows USB Video Driver, Windows Kerberos, Windows Registry, Windows SMB, Windows CSC Service, Windows Defender Application Control (WDAC), Windows SQL Server, Windows Active Directory Certificate Services, Windows Office Excel, Microsoft Graphics Component, Microsoft Office Word, Windows Task Scheduler, Microsoft Exchange Server, Azure Database for PostgreSQL, Visual Studio, Windows Win32 Kernel Subsystem, TorchGeo, Visual Studio Code, Microsoft PC Manager, and Airlift.microsoft.com. 

Security 10816 Published by Philipp Esselbach 0

Fort Firewall 3.14.9 has been released, featuring updates to the user interface, such as the introduction of dark theme colors and the removal of Service SID handling.

Security 10816 Published by Philipp Esselbach 0

Microsoft has released 117 CVEs for October 2024, covering various aspects of Windows systems. These include Windows Hyper-V, Windows EFI Partition, Windows Kernel, OpenSSH for Windows, Azure Monitor, Windows Netlogon, Windows Kerberos, BranchCache, Azure Stack, Windows Routing and Remote Access Service (RRAS),.NET and Visual Studio, Windows Remote Desktop Licensing Service, Windows Remote Desktop Services, Microsoft Configuration Manager, Service Fabric, Power BI,.NET,.NET Framework, Visual Studio, Visual Studio Code, DeepSpeed, Windows Resilient File System (ReFS), Windows Common Log File System Driver, Windows Kernel, Microsoft Office SharePoint, Microsoft Office Excel, Microsoft Office Visio, BranchCache, Microsoft Graphics Component, Windows Kernel, Windows Standards-Based Storage Management Service, Windows BitLocker, Windows NTFS, Internet Small Computer Systems Interface (iSCSI), Windows Secure Kernel Mode, Microsoft ActiveX, Windows Telephony Server, Microsoft WDAC OLE DB provider for SQL, Windows Kernel, Windows Hyper-V, and Windows Local Security Authority.

Security 10816 Published by Philipp Esselbach 0

Fort Firewall 3.14.0 has been released, allowing users to apply an "Alerts" filter to their programs and reset changes on close, following a regression from v3.13.13.

Security 10816 Published by Philipp Esselbach 0

The Microsoft September 2024 security update release is packed with 79 Microsoft CVEs. It's like a treasure trove of fixes for Windows TCP/IP, SQL Server, Security Zone Mapping, Windows Installer, and so much more.

Security 10816 Published by Philipp Esselbach 0

Fort Firewall 3.13.10 has been updated with Spanish language support, a "README.portable" file for uninstallation, and driver scripts advising against removing the FortFirewall service.

Security 10816 Published by Philipp Esselbach 0

A security researcher handed Troy Hunt 122 GB of data obtained from numerous Telegram channels. This data contained 1,7k files, 2 billion lines of text, and 361 million distinct email addresses, passwords, and website URLs.

Attackers frequently use the data, also known as "combolists," to launch "credential stuffing" attacks. The data was sourced from 518 different channels and amounted to 1,748 separate files. The largest file, containing tens of millions of rows, appears to be the result of info-stealing malware that obtained credentials from compromised websites. The data was loaded into Have I Been Pwned (HIBP) today, as it contains a large amount of previously unseen email addresses.