• ethiocert
  • ethiocert
  • ethiocert

Asset-Herausgeber

null Microsoft rolls out Patch Tuesday updates for January 2024

πŸ›‘οΈ Tech Update Alert! 🚨 Microsoft rolls out Patch Tuesday updates for January 2024, addressing 48 security flaws! πŸ”’ Two critical and 46 important issues fixed. No zero-days reported for the second consecutive month. 🌐✨
πŸ†˜ Critical Flaws:
CVE-2024-20674: Windows Kerberos Security Feature Bypass
CVE-2024-20700: Windows Hyper-V Remote Code Execution
🌐 The Hyper-V flaw allows remote code execution without authentication or user interaction, but the attacker needs to win a race condition, says Adam Barnett, lead software engineer at Rapid7.
🚫 Microsoft disables FBX file insertion in Word, Excel, PowerPoint, and Outlook due to CVE-2024-20677, preventing potential remote code execution.
πŸ”„ Microsoft recommends using GLB (Binary GL Transmission Format) as a substitute 3D file format in Office, similar to the step taken after the discovery of security flaws in SketchUp files.
πŸ”’ Other Vendors in Action! πŸš€
Adobe, AMD, Android, Arm, ASUS, Bosch, Cisco, Dell, F5, Fortinet, Google Chrome, Google Cloud, HP, IBM, Intel, Lenovo, Linux distros (Debian, Oracle, Red Hat, SUSE, Ubuntu), MediaTek, NETGEAR, Qualcomm, Samsung, SAP, Schneider Electric, Siemens, Splunk, Synology, Trend Micro, Zimbra, Zoom, and more have released security updates.
Stay secure, update your software! πŸ’»πŸ” #TechSecurity #PatchTuesday #CyberSafety #MicrosoftUpdates

Services

 

Services

ema
Protect

This refers to making sure an organization has taken the necessary measures and precautions to secure itself before any cybersecurity problems arise. This area focuses on proactive strategies rather than reactive strategies.

ema
Detect

Incidents cannot be responded to unless they are detected. In fact, detection of security incidents may take weeks or months for many organizations to accomplish.

ema
Respond

Responding to a computer security incident has a few steps. The first step is when the team receives a report of an incident from a constituent, such as a user, business partner or security operations center staff member.

Verschachtelte Anwendungen

Alerts and Tips

Alerts and Tips

 

Security Awareness

Security Awareness

Tools

Tools