Software

February security updates from Microsoft

Patch Tuesday looms and Microsoft has provided its customary Security bulletin Advance Notification
Here’s a summary of the coming security updates, scheduled for release on Tuesday 13 February.

  • 5 updates affecting Microsoft Windows [maximum severity rating ‘Critical’].
  • 2 updates affecting Microsoft Office [maximum severity rating ‘Critical’].
  • 1 update affecting Microsoft Windows and Microsoft Visual Studio [maximum severity rating ‘Important’].
  • 1 update affecting Microsoft Windows and Office [maximum severity rating ‘Important’].
  • 1 update affecting Microsoft Step-by-Step Interactive Training [maximum severity rating ‘Important’].
  • 1 update affecting Microsoft Data Access Components [maximum severity rating ‘Critical’]
  • 1 update affecting Microsoft Windows Live OneCare, Microsoft Antigen, Microsoft Windows Defender, Microsoft Forefront Security for Exchange Server and Microsoft Forefront Security for SharePoint [maximum severity rating ‘Critical’]

    As you can see, there are a lot of ‘Critical’ vulnerabilities; and we know from experience how quickly malware writers exploit any opportunities. So schedule next Tuesday’s updates now.

  • February security updates from Microsoft

    Your email address will not be published. Required fields are marked *

     

    Reports

    Lyceum group reborn

    According to older public researches, Lyceum conducted operations against organizations in the energy and telecommunications sectors across the Middle East. In 2021, we have been able to identify a new cluster of the group’s activity, focused on two entities in Tunisia.

    GhostEmperor: From ProxyLogon to kernel mode

    While investigating a recent rise of attacks against Exchange servers, we noticed a recurring cluster of activity that appeared in several distinct compromised networks. With a long-standing operation, high profile victims, advanced toolset and no affinity to a known threat actor, we decided to dub the cluster GhostEmperor.

    APT trends report Q2 2021

    This is our latest summary of advanced persistent threat (APT) activity, focusing on significant events that we observed during Q2 2021: attacks against Microsoft Exchange servers, APT29 and APT31 activities, targeting campaigns, etc.

    Subscribe to our weekly e-mails

    The hottest research right in your inbox