fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing

        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing

        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing

        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing

        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training

        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing

        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review

        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention

        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise

        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle

        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

I'VE BEEN BREACHED

Microsoft April 2021 Patch Tuesday Fixes 108 Flaws, 5 Zero-days

Microsoft April 2021 Patch Tuesday Fixes 108 Flaws, 5 Zero-days

Today is Microsoft’s April 2021 Patch Tuesday, and with it comes five zero-day vulnerabilities and more Critical Microsoft Exchange vulnerabilities. It has been a tough couple of months for Windows and Microsoft Exchange admins, and it looks like April won’t be any easier, so please be nice to your IT staff today.

With today’s update, Microsoft has fixed 108 vulnerabilities, with 19 classified as Critical and 89 as Important. These numbers do not include the 6 Chromium Edge vulnerabilities released earlier this month.

There are also five zero-day vulnerabilities patched today that were publicly disclosed, with one known to be used in attacks.

To make matters worse, Microsoft fixed four critical Microsoft Exchange vulnerabilities that the NSA discovered.

For information about the non-security Windows updates, you can read about today’s Windows 10 KB5001330 & KB5001337 cumulative updates.

Five zero-day vulnerabilities fixed

As part of today’s Patch Tuesday, Microsoft has fixed four publicly disclosed vulnerabilities and one actively exploited vulnerability.

The following four vulnerabilities Microsoft states were publicly exposed but not exploited:

  • CVE-2021-27091 – RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
  • CVE-2021-28312 – Windows NTFS Denial of Service Vulnerability
  • CVE-2021-28437 – Windows Installer Information Disclosure Vulnerability – PolarBear
  • CVE-2021-28458 – Azure ms-rest-nodeauth Library Elevation of Privilege Vulnerability

Also Read: What You Should Know About The Data Protection Obligation Singapore

The following vulnerability discovered by Kaspersky researcher Boris Larin was found exploited in the wild.

Kaspersky believes the CVE-2021-28310 exploited was utilized by the BITTER APT group.

“We believe this exploit is used in the wild, potentially by several threat actors. It is an escalation of privilege (EoP) exploit that is likely used together with other browser exploits to escape sandboxes or get system privileges for further access. “

“Unfortunately, we weren’t able to capture a full chain, so we don’t know if the exploit is used with another browser zero-day, or coupled with known, patched vulnerabilities,” Kaspersky explained in new blog post.

NSA discovers Microsoft Exchange vulnerabilities

Microsoft Exchange admins are not getting any rest as four more Critical remote code execution vulnerabilities discovered by the NSA were fixed in Microsoft Exchange today. Two of these vulnerabilities are pre-authentication, which means they do not require attackers to log in to the server first.

None of these vulnerabilities are known to have been actively exploited and are tracked with the following CVEs:

  • CVE-2021-28480 – Microsoft Exchange Server Remote Code Execution Vulnerability
  • CVE-2021-28481 – Microsoft Exchange Server Remote Code Execution Vulnerability
  • CVE-2021-28482 – Microsoft Exchange Server Remote Code Execution Vulnerability
  • CVE-2021-28483 – Microsoft Exchange Server Remote Code Execution Vulnerability

Admins can find more information about these vulnerabilities here.

Recent updates from other companies

Other vendors who released updates in April include:

The April 2021 Patch Tuesday Security Updates

Below is the full list of resolved vulnerabilities and released advisories in the April 2021 Patch Tuesday updates. To access the full description of each vulnerability and the systems that it affects, you can view the full report here.

Also Read: The Difference Between GDPR And PDPA Under 10 Key Issues

TagCVE IDCVE TitleSeverity
Azure AD Web Sign-inCVE-2021-27092Azure AD Web Sign-in Security Feature Bypass VulnerabilityImportant
Azure DevOpsCVE-2021-28459Azure DevOps Server Spoofing VulnerabilityImportant
Azure DevOpsCVE-2021-27067Azure DevOps Server and Team Foundation Server Information Disclosure VulnerabilityImportant
Azure SphereCVE-2021-28460Azure Sphere Unsigned Code Execution VulnerabilityCritical
Microsoft Edge (Chromium-based)CVE-2021-21199Chromium: CVE-2021-21199 Use Use after free in AuraUnknown
Microsoft Edge (Chromium-based)CVE-2021-21194Chromium: CVE-2021-21194 Use after free in screen captureUnknown
Microsoft Edge (Chromium-based)CVE-2021-21197Chromium: CVE-2021-21197 Heap buffer overflow in TabStripUnknown
Microsoft Edge (Chromium-based)CVE-2021-21198Chromium: CVE-2021-21198 Out of bounds read in IPCUnknown
Microsoft Edge (Chromium-based)CVE-2021-21195Chromium: CVE-2021-21195 Use after free in V8Unknown
Microsoft Edge (Chromium-based)CVE-2021-21196Chromium: CVE-2021-21196 Heap buffer overflow in TabStripUnknown
Microsoft Exchange ServerCVE-2021-28480Microsoft Exchange Server Remote Code Execution VulnerabilityCritical
Microsoft Exchange ServerCVE-2021-28482Microsoft Exchange Server Remote Code Execution VulnerabilityCritical
Microsoft Exchange ServerCVE-2021-28483Microsoft Exchange Server Remote Code Execution VulnerabilityCritical
Microsoft Exchange ServerCVE-2021-28481Microsoft Exchange Server Remote Code Execution VulnerabilityCritical
Microsoft Graphics ComponentCVE-2021-28350Windows GDI+ Remote Code Execution VulnerabilityImportant
Microsoft Graphics ComponentCVE-2021-28318Windows GDI+ Information Disclosure VulnerabilityImportant
Microsoft Graphics ComponentCVE-2021-28348Windows GDI+ Remote Code Execution VulnerabilityImportant
Microsoft Graphics ComponentCVE-2021-28349Windows GDI+ Remote Code Execution VulnerabilityImportant
Microsoft Internet Messaging APICVE-2021-27089Microsoft Internet Messaging API Remote Code Execution VulnerabilityImportant
Microsoft NTFSCVE-2021-28312Windows NTFS Denial of Service VulnerabilityModerate
Microsoft NTFSCVE-2021-27096NTFS Elevation of Privilege VulnerabilityImportant
Microsoft Office ExcelCVE-2021-28456Microsoft Excel Information Disclosure VulnerabilityImportant
Microsoft Office ExcelCVE-2021-28451Microsoft Excel Remote Code Execution VulnerabilityImportant
Microsoft Office ExcelCVE-2021-28454Microsoft Excel Remote Code Execution VulnerabilityImportant
Microsoft Office ExcelCVE-2021-28449Microsoft Office Remote Code Execution VulnerabilityImportant
Microsoft Office OutlookCVE-2021-28452Microsoft Outlook Memory Corruption VulnerabilityImportant
Microsoft Office SharePointCVE-2021-28450Microsoft SharePoint Denial of Service UpdateImportant
Microsoft Office WordCVE-2021-28453Microsoft Word Remote Code Execution VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2021-28464VP9 Video Extensions Remote Code Execution VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2021-28466Raw Image Extension Remote Code Execution VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2021-27079Windows Media Photo Codec Information Disclosure VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2021-28468Raw Image Extension Remote Code Execution VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2021-28317Microsoft Windows Codecs Library Information Disclosure VulnerabilityImportant
Microsoft Windows DNSCVE-2021-28323Windows DNS Information Disclosure VulnerabilityImportant
Microsoft Windows DNSCVE-2021-28328Windows DNS Information Disclosure VulnerabilityImportant
Microsoft Windows SpeechCVE-2021-28351Windows Speech Runtime Elevation of Privilege VulnerabilityImportant
Microsoft Windows SpeechCVE-2021-28436Windows Speech Runtime Elevation of Privilege VulnerabilityImportant
Microsoft Windows SpeechCVE-2021-28347Windows Speech Runtime Elevation of Privilege VulnerabilityImportant
Open Source SoftwareCVE-2021-28458Azure ms-rest-nodeauth Library Elevation of Privilege VulnerabilityImportant
Role: Hyper-VCVE-2021-28441Windows Hyper-V Information Disclosure VulnerabilityImportant
Role: Hyper-VCVE-2021-28314Windows Hyper-V Elevation of Privilege VulnerabilityImportant
Role: Hyper-VCVE-2021-28444Windows Hyper-V Security Feature Bypass VulnerabilityImportant
Role: Hyper-VCVE-2021-26416Windows Hyper-V Denial of Service VulnerabilityImportant
Visual StudioCVE-2021-27064Visual Studio Installer Elevation of Privilege VulnerabilityImportant
Visual Studio CodeCVE-2021-28457Visual Studio Code Remote Code Execution VulnerabilityImportant
Visual Studio CodeCVE-2021-28471Remote Development Extension for Visual Studio Code Remote Code Execution VulnerabilityImportant
Visual Studio CodeCVE-2021-28475Visual Studio Code Remote Code Execution VulnerabilityImportant
Visual Studio CodeCVE-2021-28473Visual Studio Code Remote Code Execution VulnerabilityImportant
Visual Studio CodeCVE-2021-28477Visual Studio Code Remote Code Execution VulnerabilityImportant
Visual Studio CodeCVE-2021-28469Visual Studio Code Remote Code Execution VulnerabilityImportant
Visual Studio Code – GitHub Pull Requests and Issues ExtensionCVE-2021-28470Visual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution VulnerabilityImportant
Visual Studio Code – Kubernetes ToolsCVE-2021-28448Visual Studio Code Kubernetes Tools Remote Code Execution VulnerabilityImportant
Visual Studio Code – Maven for Java ExtensionCVE-2021-28472Visual Studio Code Maven for Java Extension Remote Code Execution VulnerabilityImportant
Windows Application Compatibility CacheCVE-2021-28311Windows Application Compatibility Cache Denial of Service VulnerabilityImportant
Windows AppX Deployment ExtensionsCVE-2021-28326Windows AppX Deployment Server Denial of Service VulnerabilityImportant
Windows Console DriverCVE-2021-28438Windows Console Driver Denial of Service VulnerabilityImportant
Windows Console DriverCVE-2021-28443Windows Console Driver Denial of Service VulnerabilityImportant
Windows Diagnostic HubCVE-2021-28313Diagnostics Hub Standard Collector Service Elevation of Privilege VulnerabilityImportant
Windows Diagnostic HubCVE-2021-28321Diagnostics Hub Standard Collector Service Elevation of Privilege VulnerabilityImportant
Windows Diagnostic HubCVE-2021-28322Diagnostics Hub Standard Collector Service Elevation of Privilege VulnerabilityImportant
Windows Early Launch Antimalware DriverCVE-2021-28447Windows Early Launch Antimalware Driver Security Feature Bypass VulnerabilityImportant
Windows ELAMCVE-2021-27094Windows Early Launch Antimalware Driver Security Feature Bypass VulnerabilityImportant
Windows Event TracingCVE-2021-27088Windows Event Tracing Elevation of Privilege VulnerabilityImportant
Windows Event TracingCVE-2021-28435Windows Event Tracing Information Disclosure VulnerabilityImportant
Windows InstallerCVE-2021-26413Windows Installer Spoofing VulnerabilityImportant
Windows InstallerCVE-2021-28440Windows Installer Elevation of Privilege VulnerabilityImportant
Windows InstallerCVE-2021-28437Windows Installer Information Disclosure VulnerabilityImportant
Windows InstallerCVE-2021-26415Windows Installer Elevation of Privilege VulnerabilityImportant
Windows KernelCVE-2021-27093Windows Kernel Information Disclosure VulnerabilityImportant
Windows KernelCVE-2021-28309Windows Kernel Information Disclosure VulnerabilityImportant
Windows Media PlayerCVE-2021-28315Windows Media Video Decoder Remote Code Execution VulnerabilityCritical
Windows Media PlayerCVE-2021-27095Windows Media Video Decoder Remote Code Execution VulnerabilityCritical
Windows Network File SystemCVE-2021-28445Windows Network File System Remote Code Execution VulnerabilityImportant
Windows Overlay FilterCVE-2021-26417Windows Overlay Filter Information Disclosure VulnerabilityImportant
Windows PortmappingCVE-2021-28446Windows Portmapping Information Disclosure VulnerabilityImportant
Windows RegistryCVE-2021-27091RPC Endpoint Mapper Service Elevation of Privilege VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28336Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Remote Procedure Call RuntimeCVE-2021-28335Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Remote Procedure Call RuntimeCVE-2021-28334Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Remote Procedure Call RuntimeCVE-2021-28338Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Remote Procedure Call RuntimeCVE-2021-28434Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28337Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Remote Procedure Call RuntimeCVE-2021-28333Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Remote Procedure Call RuntimeCVE-2021-28327Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28329Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Remote Procedure Call RuntimeCVE-2021-28330Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Remote Procedure Call RuntimeCVE-2021-28332Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Remote Procedure Call RuntimeCVE-2021-28331Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Remote Procedure Call RuntimeCVE-2021-28354Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28339Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Remote Procedure Call RuntimeCVE-2021-28355Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28353Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28352Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28357Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28358Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28356Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28346Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28342Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28340Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28341Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28345Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28344Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportant
Windows Remote Procedure Call RuntimeCVE-2021-28343Remote Procedure Call Runtime Remote Code Execution VulnerabilityCritical
Windows Resource ManagerCVE-2021-28320Windows Resource Manager PSM Service Extension Elevation of Privilege VulnerabilityImportant
Windows Secure Kernel ModeCVE-2021-27090Windows Secure Kernel Mode Elevation of Privilege VulnerabilityImportant
Windows Services and Controller AppCVE-2021-27086Windows Services and Controller App Elevation of Privilege VulnerabilityImportant
Windows SMB ServerCVE-2021-28325Windows SMB Information Disclosure VulnerabilityImportant
Windows SMB ServerCVE-2021-28324Windows SMB Information Disclosure VulnerabilityImportant
Windows TCP/IPCVE-2021-28439Windows TCP/IP Driver Denial of Service VulnerabilityImportant
Windows TCP/IPCVE-2021-28442Windows TCP/IP Information Disclosure VulnerabilityImportant
Windows TCP/IPCVE-2021-28319Windows TCP/IP Driver Denial of Service VulnerabilityImportant
Windows Win32KCVE-2021-27072Win32k Elevation of Privilege VulnerabilityImportant
Windows Win32KCVE-2021-28310Win32k Elevation of Privilege VulnerabilityImportant
Windows WLAN Auto Config ServiceCVE-2021-28316Windows WLAN AutoConfig Service Security Feature Bypass VulnerabilityImportant

0 Comments

Let us help you out.

Grab your free consultation NOW!

Privacy Ninja

Data Protection​

Cybersecurity

Support

Company

Locations

Singapore

7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987

Thailand

The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand



email-icon
Facebook Twitter Linkedin Youtube

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
TALK TO US
×

Hello!

Click one of our contacts below to chat on WhatsApp

Social Chat is free, download and try it now here!

× Chat with us