SecureTeam

Critical Microsoft DNS RCE Vulnerability

Microsoft has released a patch to resolve a critical remote code execution vulnerability that has lived in the DNS server code for 17 years. A blog post from the Microsoft Security Response Centre states: Today we released an update for CVE-2020-1350, a Critical Remote Code Execution (RCE) vulnerability in Windows DNS Server that is classified as a ‘wormable’ vulnerability and has a CVSS base score of 10.0. This issue results from a flaw […]

Critical Microsoft DNS RCE Vulnerability Read More »

Microsoft launches Linux Malware Detector

Tools / Ian Reynolds

Microsoft has launched Project Freta, a new malware detection service aimed at Linux systems. Named Project Freta (after the street where x-ray pioneer Marie Curie lived in Poland) the free service provides a means to scan the memory of Linux systems in order to detect malware. Rather than install agents or scanning code onto the

Microsoft launches Linux Malware Detector Read More »

Record breaking June Patch Tuesday

News, Vulnerabilities / Ian Reynolds

In June 2020 Microsoft’s Patch Tuesday fixes a record 129 defects and vulnerabilities in its software – with a further 19 patches in the June Microsoft Office patch bundle. This continues a recent trend of ever-increasing numbers of patches included in the monthly updates from Microsoft (the two previous highest number of patches were in

Record breaking June Patch Tuesday Read More »

Microsoft extends support for older software

News, Uncategorized / Ian Reynolds

Microsoft has pushed back the end of support dates for a raft of software versions in order to ease the burden on stretched IT teams during the COVID19 pandemic. Organisations have to keep their systems updated with supported versions of software in order to benefit from the monthly security patches which are essential for network

Microsoft extends support for older software Read More »

Microsoft patches zero-day flaws

News, Uncategorized, Vulnerabilities / Ian Reynolds

April’s patch Tuesday release from Microsoft includes fixes for three zero-day vulnerabilities in Windows that are under active attack. CVE-2020-1020 is a flaw in the Windows Adobe Type Manager Library. According to Microsoft: For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely. For systems running Windows 10,

Microsoft patches zero-day flaws Read More »

What is server hardening ?

Articles, Infrastructure / Ian Reynolds

Server hardening is a set of disciplines and techniques which improve the security of an ‘off the shelf’ server. Server Hardening is requirement of security frameworks such as PCI-DSS and is typically included when organisations adopt ISO27001. What is the attack surface The aim of server hardening is to reduce the attack surface of

What is server hardening ? Read More »

Windows zero day RCE vulnerabilities under attack

News, Vulnerabilities / Ian Reynolds

Microsoft warns that attackers are targeting two zero-day remote code execution vulnerabilities that exist in all versions of Windows – and a fix is not expected until the April patch Tuesday. The vulnerabilities exist in the Adobe Type Manager library which is a standard Windows component used primarily by Windows Explorer to display previews of

Windows zero day RCE vulnerabilities under attack Read More »

Microsoft patches critical SMB flaw

News, Vulnerabilities / Ian Reynolds

Microsoft has released a patch to fix a remote code execution flaw in the SMB protocol affecting Windows 10 PC and their servers. SMB is used by Active Directory, for network file sharing and some printers. Microsoft have published a security advisory which details the scope of the flaw. The problem is the way the SMBv3

Microsoft patches critical SMB flaw Read More »

Internet Explorer zero-day RCE attack

News, Vulnerabilities / Ian Reynolds

Microsoft has released details of a zero-day remote code execution vulnerability which is being actively exploited to attack Windows computers. It affects all versions of Internet Explorer running on Windows 7, 8.1 and 10. The problems lies in one of the two javascript engines available within IE. Since a webpage can request IE to use

Internet Explorer zero-day RCE attack Read More »

Microsoft advises SIEM to help defend RDP

News, Tools, Uncategorized / Ian Reynolds

In a recent whitepaper, Microsoft provides advice on how to spot RDP attacks in Windows event logs while the attack is still underway. The paper titled: “Data science for cybersecurity: A probabilistic time series model for detecting RDP inbound brute force attacks” succinctly explains the risk posed by RDP servers when published to the internet:

Microsoft advises SIEM to help defend RDP Read More »

microsoft

Critical Microsoft DNS RCE Vulnerability

Microsoft launches Linux Malware Detector

Record breaking June Patch Tuesday

Microsoft extends support for older software

Microsoft patches zero-day flaws

What is server hardening ?

Windows zero day RCE vulnerabilities under attack

Microsoft patches critical SMB flaw

Internet Explorer zero-day RCE attack

Microsoft advises SIEM to help defend RDP

Our Address

Talk to us

Office Hours

Company Number

VAT Registration Number

Penetration Testing

Risk & Compliance Services

Quick Links

information. secured.

Head Office Address

Opening Hours

Stay in Touch