minute read
Authors
Microsoft has announced the release of its patch for the much publicised WMF vulnerability. The company planned to release the patch on January 10th, as part of the normal patch cycle, but is releasing it early because of customer demand and because it has completed testing on the fix earlier than anticipated.
The patch is available for download here. Install it now – this vulnerability is too critical not to take seriously.
From the same authors
In the same category
An in-depth analysis of Umbrij, a new tool used by the ToddyCat APT group to compromise corporate email communications in Gmail. The attack targeted OAuth authorization tokens, allowing threat actors to gain access to Google services.
Cloud Atlas attacks the public sector and diplomatic structures of Russia and Belarus, using ReverseSocks, SSH, and Tor for persistence in infected systems and its new tool, PowerCloud.
Kaspersky researchers analyze a range of new PebbleDash-based tools used in recent Kimsuky campaigns and reveal their connection to the AppleSeed malware cluster.
Kaspersky researchers uncovered malicious wheel packages in PyPI that targeted both Windows and Linux and contained a dropper delivering malware dubbed ZiChatBot. We attribute this activity to OceanLotus APT.
Microsoft releases patch for .wmf vulnerability