security update

Fortinet is back in the spotlight with the release of a critical security update aimed at addressing a severe vulnerability in its FortiManager product. This vulnerability, if left unpatched, has the potential to allow remote cyber threat actors to seize control of affected systems. For system...

In a move that secures systems while turning a significant page in authentication history, Microsoft has made decisive strides in phasing out the old and increasingly vulnerable NTLM (Net-NTLM or Windows NT LAN Manager) protocol. While many users likely missed this change amidst the flood of...

Heads up, Windows users — the Cybersecurity and Infrastructure Security Agency (CISA) has sounded the alarm on two newly-added vulnerabilities that deserve everyone’s immediate attention. These vulnerabilities target two major software platforms: Adobe ColdFusion and Windows Kernel-Mode Driver...

With all the cybersecurity risks creeping in today's digital landscape, Microsoft is making moves to tighten authentication security in domain controller setups. If you're in the world of Active Directory and Windows Server, get ready because Full Enforcement mode related to certificate-based...

In a sobering reminder of our digital age's perils, Microsoft has recently released an urgent patch to address a high-severity zero-day flaw that affects both Windows 10 and Windows 11 users. Dubbed CVE-2024-49138, this vulnerability has been linked to a potentially devastating exploit known as...

On December 12, 2024, Microsoft rolled out its final Patch Tuesday update for the year, addressing a significant wave of security vulnerabilities that could potentially threaten the integrity and safety of Windows 11 users. This update is by no means a small affair; it covers a staggering 72...

On December 11, 2024, Microsoft released a vital security update for Windows 11 users—specifically KB5048667 for Windows 11 24H2 and KB5048685 for versions 23H2 and 22H2. This Patch Tuesday update addresses a significant security vulnerability related to the Netlogon Remote Protocol, which...

Every year, as the holiday season approaches, many of us look forward to festive gatherings, delicious food, and perhaps a few gifts under the tree. However, for security administrators managing Windows environments, the December Patch Tuesday is more like a delivery of coal than a sleigh full...

In a significant move for its long-standing user base, Microsoft has rolled out Windows 10 KB5048652, touted as the last security update for the operating system before its twilight. On December 10, 2024, this patch became available, and it’s crucial for users—especially those hesitant to...

On December 10, 2024, Microsoft rolled out the KB5048667 update for Windows 11, specifically targeting users with the 24H2 version. With the release of OS Build 26100.2605, this update primarily addresses various security issues vital for maintaining a robust operating system. Let's delve deeply...

On December 10, 2024, Microsoft announced critical security updates to address the CVE-2024-38033 vulnerability, a newly identified PowerShell elevation of privilege flaw. This patch specifically targets Windows Server 2012 and Windows Server 2012 R2, making it essential for administrators to...

In the ever-evolving landscape of cybersecurity, vulnerabilities like CVE-2023-44487 serve as a poignant reminder of the threats that lurk within our digital infrastructures. On October 24, 2023, Microsoft took significant steps to safeguard its products by releasing critical security updates...

In a world where staying connected is paramount, discovering vulnerabilities can feel akin to finding a hole in your Wi-Fi network—at once alarming and demanding immediate attention. One such vulnerability, known as CVE-2023-38171, has recently come to light, targeting Microsoft’s QUIC...

On December 10, 2024, Microsoft unveiled a significant update for Microsoft Office, tagged as ADV240002. This update serves as part of a broader initiative to reinforce the platform's security through layered defenses, aptly termed "Defense in Depth." This concept emphasizes a multi-faceted...

On December 10, 2024, a critical update was released regarding CVE-2024-49091, a significant vulnerability in the Windows Domain Name Service (DNS) that could potentially allow attackers to execute remote code on affected systems. This advisory is crucial for all Windows users, especially those...

In the ever-evolving landscape of cybersecurity, new vulnerabilities seem to sprout faster than weeds in a neglected garden. A crucial new entry into the annals of CVEs (Common Vulnerabilities and Exposures) is CVE-2024-49086, which focuses on the Windows Routing and Remote Access Service...

On December 10, 2024, Microsoft rolled out an important security update — KB5048667 — aimed at all editions of Windows 11 version 24H2. As we wind down for the year, let's delve into the significant details of this release and what it means for you, the user. Key Details of the Update Release...

In an unsettling development for users of industrial control systems, the Cybersecurity and Infrastructure Security Agency (CISA) has issued a vital security advisory pertaining to vulnerabilities in Fuji Electric's Monitouch V-SFT software. Here's everything you need to know about these...

It’s not every day Defender updates make headlines, but Microsoft is turning a simple patch release into a call-to-action for every Windows administrator and home user alike. So, grab your keyboard—and maybe a cup of coffee—as we break down what’s happening with this seemingly routine, but...

In an ironic twist worthy of a sitcom, Microsoft has once again stepped into the spotlight regarding its flagging Exchange Server update saga. The tech giant recently resumed the rollout of a security update for Exchange Server that had been halted earlier due to reports of broken transport...