fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Windows 10 KB5004237 & KB5004245 cumulative updates released

Windows 10 KB5004237 & KB5004245 cumulative updates released

As part of the July 2021 Patch Tuesday, Microsoft has released new KB5004237 and KB5004245 cumulative updates for recent versions of Windows. Today’s cumulative updates include security fixes for PCs with May 2021 Update, October 2020 Update, and May 2020 Update. 

This month’s KB5004237 and KB5004245 cumulative updates are part of the mandatory Patch Tuesday updates containing numerous bug fixes and performance enhancements. Also included are security updates for 117 vulnerabilities in the OS, browsers, core components, and other basic functions.

The full list of today’s cumulative updates is below:

Windows users must install these updates as soon as possible as they contain fixes for nine zero-day vulnerabilities, with four actively exploited by threat actors.

Also Read: The 5 Phases of Penetration Testing You Should Know

Like every Windows Update, you can open Settings, click on Windows Update, and select ‘Check for Updates‘ to install the updates.

Installing KB5004237 cumulative update via Windows Update
Installing KB5004237 cumulative update via Windows Update

If you own multiple PCs or if you would like to patch the PCs manually, you can learn more about it here.

What’s new in Builds 19043.1110, 19042.1110 and 19041.1110

After installing the KB5004237 update, Windows 10 2004 will be updated to build 19041.1110, Windows 10 20H2 will be updated to build 19042.1110, and Windows 10 21H1 will be updated to build 19043.1110.

KB5004237 comes with the following bug fixes:

  • Addresses a remote code execution exploit in the Windows Print Spooler service, known as “PrintNightmare”, as documented in CVE-2021-34527. After installing this and later Windows updates, users who are not administrators can only install signed print drivers to a print server. By default, administrators can install signed and unsigned printer drivers to a print server. The installed root certificates in the system’s Trusted Root Certification Authorities trusts signed drivers. Microsoft recommends that you immediately install this update on all supported Windows client and server operating system, starting with devices that currently host the print server role. You also have the option to configure the RestrictDriverInstallationToAdministrators registry setting to prevent non-administrators from installing signed printer drivers on a print server. For more information, see KB5005010.
  • Addresses an issue that might make printing to certain printers difficult. This issue affects various brands and models, but primarily receipt or label printers that connect using a USB port.
  • Removes support for the PerformTicketSignature setting and permanently enables Enforcement mode for CVE-2020-17049. For more information and steps to enable full protection on domain controller servers, see Managing deployment of Kerberos S4U changes for CVE-2020-17049.
  • Adds Advanced Encryption Standard (AES) encryption protections for CVE-2021-33757. For more information, see KB5004605.
  • Addresses a vulnerability in which Primary Refresh Tokens are not strongly encrypted. This issue might allow the tokens to be reused until the token expires or is renewed. For more information about this issue, see CVE-2021-33779.
  • Security updates to Windows Apps, Windows Management, Windows Fundamentals, Windows Authentication, Windows User Account Control (UAC), Operating System Security, Windows Virtualization, Windows Linux, the Windows Kernel, the Microsoft Scripting Engine, the Windows HTML Platforms, the Windows MSHTML Platform, and Windows Graphics.
  • Updates an issue in a small subset of users that have lower than expected performance in games after installing KB5000842 or later.  
  • Updates an issue that causes the Japanese Input Method Editor (IME) to suddenly stop working while you are typing. 
  • Updates an issue in which signing in using a PIN fails. The error message is “Something happened and your PIN isn’t available. Click to set up your PIN again.”
  • Updates an issue that, in certain cases, takes you out of the exclusive virtual reality (VR) app and back to Windows Mixed Reality Home when you press the Windows button on the controller.
  • Updates an issue that causes blurry text on the news and interests button on the Windows taskbar for some screen resolutions.
  • Updates an issue with Search box graphics on the Windows taskbar that occurs if you right-click the taskbar and turn off News and interests. This graphics issue is especially visible when using dark mode.
  • Updates an issue that might prevent you from using your fingerprint to sign in after startup or waking up your device from sleep.
  • Updates an issue that might cause a high-pitched noise or squeak in certain apps when you play 5.1 Dolby Digital audio using certain audio devices and Windows settings.

You can find a complete list of improves and fixes and detailed explanations of the known issues in the KB5004237 support bulletin.

Windows 10 version 1909 is getting KB5004245, and it includes the same set of bug fixes highlighted abov

News and Interests feed

This update also includes additional fixes for the News and Interests feature, such as blurry text on the button and taskbar glitches when you enable the feature.

The “News and Interests” is a Windows 10 taskbar news feed based on Microsoft News (MSN), and it will give news stories, sports scores, finance, and weather information. However, a bug resulted in blurry icons. 

Microsoft has fixed this bug with today’s updates.

Also Read: How Does Ransomware Work? Examples and Defense Tips

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us