UPDATE Microsoft add updates: The tech giant has revised the blocking rule in IIS Manager from “.*autodiscover\.json.*Powershell.*” to “(?=.*autodiscover\.json)(?=.*powershell).” Also , Change the Condition input from {URL} to {UrlDecode:{REQUEST_URI}} and then click OK On Thursday, September 29, a Vietnamese security firm called GTSC published information and IOCs on what they claim is a pair of unpatched Microsoft Exchange ServerContinue reading “New Microsoft Exchange zero-day actively (RCE+SSRF) exploited in attacks”
Tag Archives: security
Symantec MAA Cleanup Failed to delete sample
on Symantec maa (sandbox) your disk get out of space and you see that old samples are not Deleted (Cleanup) from the MAA machine. you can delete the old samples manually , But it not delete automatically as it should. if you check the “ma” log on the MAA machine you may see errors likeContinue reading “Symantec MAA Cleanup Failed to delete sample”
Microsoft May Patch Updates Cause Windows AD Authentication Errors
Some May 2022 Microsoft Security Updates Are Leading to Authentication Failures. Microsoft reported : “After installing updates released May 10, 2022 on your domain controllers, you might see authentication failures on the server or client for services such as Network Policy Server (NPS), Routing and Remote access Service (RRAS), Radius, Extensible Authentication Protocol (EAP), and Protected Extensible Authentication Protocol (PEAP),”.Continue reading “Microsoft May Patch Updates Cause Windows AD Authentication Errors”
Released: May 2022 Exchange Server Security Updates
Microsoft released an SU for exchange servers. Starting with this release of Security Updates, Microsoft are releasing updates in a self-extracting auto-elevating .exe package These SUs are available for the following specific builds of Exchange Server: Exchange Server 2013 CU23 Exchange Server 2016 CU22 and CU23 Exchange Server 2019 CU11 and CU12 Manual run of /PrepareAllDomains is required : Because of additionalContinue reading “Released: May 2022 Exchange Server Security Updates”
Exchange 2022 Cumulative Update
After almost an year Microsoft released new cu for exchange 2019 and exchange 2016. the update includes the latest SUs including the updates released in the March 2022 SUs. As published on The Exchange Team (https://techcommunity.microsoft.com/t5/exchange-team-blog/released-2022-h1-cumulative-updates-for-exchange-server/ba-p/3285026) the most update are : Servicing Model Changes Microsoft announcing changes to there update delivery model for Exchange Server. Microsoft areContinue reading “Exchange 2022 Cumulative Update”
2022 MITRE ATT&CK Evaluations
Released March 31, 2022, the MITRE Engenuity ATT&CK® Evaluations covered 30 vendors and emulated the Wizard Spider and Sandworm threat groups. Two key measurements that are generated from the testing are Overall Detection and Overall Protection. About MITRE Engenuity MITRE Engenuity, a subsidiary of MITRE, is a tech foundation for the public good. MITRE’s mission-drivenContinue reading “2022 MITRE ATT&CK Evaluations”
Microsoft February 2022 Security Updates
Microsoft has fixed 48 vulnerabilities and with it comes fixes for one zero-day vulnerability CVE-2022-21989 – Windows Kernel Elevation of Privilege Vulnerability This release consists of security updates for the following products, features and roles. Azure Data Explorer Kestrel Web Server Microsoft Dynamics Microsoft Dynamics GP Microsoft Edge (Chromium-based) Microsoft Office Microsoft Office Excel Microsoft Office OutlookContinue reading “Microsoft February 2022 Security Updates”
Microsoft November 2021 Patch Tuesday fixes 55 flaws, 6 zero-days
Microsoft has fixed 55 vulnerabilities with today’s update (November 2021), with six classified as Critical and 49 as Important. The number of each type of vulnerability is listed below: 20 Elevation of Privilege vulnerabilities 2 Security Feature Bypass vulnerabilities 15 Remote Code Execution vulnerabilities 10 Information Disclosure vulnerabilities 3 Denial of Service vulnerabilities 4 Spoofing vulnerabilities The sixContinue reading “Microsoft November 2021 Patch Tuesday fixes 55 flaws, 6 zero-days”
Work From Home? Tips For Secure Work
on this days many of us working from home . attach basic Tips to work more Secure. Always Check that your Anti Virus Software Running and Up-to-date. Keep Passwords Strong and Varied . Always Use MFA when you Can. Try to Work from one Computer , don’t Take “Children game Desktop” as your work computer. ConnectContinue reading “Work From Home? Tips For Secure Work”