Microsoft March 2021 Patch Tuesday Fixes 82 Flaws, 2 Zero-days Today is Microsoft’s March 2021 Patch Tuesday, and with admins already struggling with Microsoft Exchange updates and hacked servers, please be nice to your IT staff today. With today’s update, Microsoft has fixed 82 vulnerabilities, with 10 classified as Critical and 72 as Read more…
Microsoft Shares Detection, Mitigation Advice For Azure LoLBins Azure LoLBins can be used by attackers to bypass network defenses, deploy cryptominers, elevate privileges, and disable real-time protection on a targeted device. On Windows systems, LoLBins (short for living-off-the-land binaries) are Microsoft-signed executables (downloaded or pre-installed) that threat actors can abuse Read more…
Microsoft Releases ProxyLogon Updates For Unsupported Exchange Servers Microsoft has released security updates for Microsoft Exchange servers running unsupported Cumulative Update versions vulnerable to ProxyLogon attacks. These additional security updates are meant to be installed only on machines running Exchange Server versions not supported by the original Match 2021 security patches Read more…
Microsoft 365 Adds ‘External’ Email Tags For Increased Security Microsoft is working on boosting Exchange Online phishing protection capabilities by adding support for external email message tags to its cloud-based email service. Once the feature is available, Exchange Online admins can increase their organizations’ spam and phishing protection by having Read more…
Microsoft’s MSERT Tool Now Finds Web Shells From Exchange Server Attacks Microsoft has pushed out a new update for their Microsoft Safety Scanner (MSERT) tool to detect web shells deployed in the recent Exchange Server attacks. On March 2nd, Microsoft disclosed that four Exchange Server zero-day vulnerabilities were being used Read more…
Microsoft Office 365 Gets Protection Against Malicious XLM Macros Microsoft has added XLM macro protection for Microsoft 365 customers by expanding the runtime defense provided by Office 365’s integration with Antimalware Scan Interface (AMSI) to include Excel 4.0 (XLM) macro scanning. AMSI was introduced in 2015, and it has been adopted by all major Read more…
This New Microsoft Tool Checks Exchange Servers For ProxyLogon Hacks Microsoft has released a PowerShell script that admins can use to check whether the recently disclosed ProxyLogon vulnerabilities have hacked a Microsoft Exchange server. On March 2nd, Microsoft released out-of-band emergency security updates to fix four zero-day vulnerabilities actively used in attacks Read more…
Microsoft Is Giving Windows Admins Full Control Over driver Updates Microsoft has announced a new deployment service for drivers and firmware that will make it easier for IT admins to select the right drivers for devices on their enterprise network. Once the new service is available, admins will be able Read more…
Microsoft: Exchange Updates Can Install Without Fixing Vulnerabilities Due to the critical nature of recently issued Microsoft Exchange security updates, admins need to know that the updates may have installation issues on servers where User Account Control (UAC) is enabled. Microsoft has added these warnings to all Exchange security updates Read more…
Microsoft Reveals 3 New Malware Strains Used By SolarWinds Hackers Microsoft has revealed information on newly found malware the SolarWinds hackers deployed on victims’ networks as second-stage payloads. The company now tracks the “sophisticated attacker” who used the Sunburst backdoor and Teardrop malware during the SolarWinds supply-chain attack as Nobelium. Security researchers with the Microsoft Threat Intelligence Read more…
Let us help you out.
Singapore
7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987
Thailand
The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand
Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!
Click one of our contacts below to chat on WhatsApp
