Threat Intelligence Feeds – A place to control time
Source: https://msrc-blog.microsoft.com/blog/2021/04/april-2021-update-tuesday-packages-now-available/ Update August 25, 2021: Microsoft strongly recommends that you update your servers with the most recent security updates available. CVE-2021-34473 (ProxyShell) CVE-2021-34523 (ProxyShell) CVE-2021-33766 Today is Update Tuesday – our … Read more
Source: https://msrc-blog.microsoft.com/blog/2021/03/guidance-for-responders-investigating-and-remediating-on-premises-exchange-server-vulnerabilities/ This guidance will help customers address threats taking advantage of the recently disclosed Microsoft Exchange Server on-premises vulnerabilities CVE-2021-26855, CVE-2021-26858, CVE-2021-26857, and CVE-2021-27065, which are being exploited. We strongly urge … Read more
Source: https://msrc-blog.microsoft.com/blog/2021/03/microsoft-exchange-server-vulnerabilities-mitigations-march-2021/ Update March 15, 2021: If you have not yet patched, and have not applied the mitigations referenced below, a one-click tool, the Exchange On-premises Mitigation Tool is now our recommended … Read more
Source: https://msrc-blog.microsoft.com/blog/2021/03/multiple-security-updates-released-for-exchange-server/ ** *MSRC ** / By ** MSRC Team ** / March 2, 2021 ** On March 2nd, we released several security updates for Microsoft Exchange Server to address vulnerabilities that … Read more
Source: https://msrc-blog.microsoft.com/blog/2021/02/microsoft-internal-solorigate-investigation-final-update/ We believe the Solorigate incident is an opportunity to work with the community, to share information, strengthen defenses and respond to attacks. We have now completed our internal investigation into … Read more
Source: https://msrc-blog.microsoft.com/blog/2021/02/20210212_tcpip/ 「Multiple Security Updates Affecting TCP/IP: CVE-2021-24074, CVE-2021-24094, and CVE-2021-24086」の日本語抄訳です。 2021 年 2 月 9 日 (日本時
Source: https://us-cert.cisa.gov/ncas/current-activity/2021/02/10/microsoft-launches-phase-2-mitigation-netlogon-remote-code Original release date: February 10, 2021 Microsoft addressed a critical remote code execution vulnerability affecting the Netlogon protocol (CVE-2020-1472) on August 11, 2020. Beginning with the February 9, 2021 Security … Read more
Source: https://msrc-blog.microsoft.com/blog/2021/02/msrc-security-researcher-recognition-2021/ Wondering how to get into the 2021 MSRC Most Valuable Security Researcher list and get recognized during the Black Hat USA this August? Read on to learn more about the … Read more
Microsoft today rolled out updates to plug at least 56 security holes in its Windows operating systems and other software. One of the bugs is already being actively exploited, and six of … Read more
Source: https://us-cert.cisa.gov/ncas/current-activity/2021/02/09/microsoft-warns-windows-win32k-privilege-escalation Original release date: February 9, 2021 Microsoft has released a security advisory to address an escalation of privileges vulnerability, CVE-2021-1732, in Microsoft Win32k. A local attacker can exploit this vulnerability … Read more
Source: https://msrc-blog.microsoft.com/blog/2021/02/continuing-to-listen-good-news-about-the-security-update-guide-api/ Based on user feedback we have simplified programmatic access to the security update data by removing the authentication and API-Key requirements when using the CVRF API. You will no longer … Read more
Source: https://msrc-blog.microsoft.com/blog/2021/02/multiple-security-updates-affecting-tcp-ip/ Today Microsoft released a set of fixes affecting Windows TCP/IP implementation that include two Critical Remote Code Execution (RCE) vulnerabilities (CVE-2021-24074, CVE-2021-24094) and an Important Denial of Service (DoS) vulnerability … Read more
Source: https://msrc-blog.microsoft.com/blog/2021/01/top-msrc-2020-q4-security-researchers-congratulations/ We’re excited to announce the top contributing researchers for the 2020 Fourth Quarter (Q4)! Congratulations to all of the researchers who made this quarter’s leaderboard and a huge thank you … Read more
Source: https://msrc-blog.microsoft.com/blog/2021/01/netlogon-domain-controller-enforcement-mode-is-enabled-by-default-beginning-with-the-february-9-2021-security-update-related-to-cve-2020-1472/ Microsoft addressed a Critical RCE vulnerability affecting the Netlogon protocol (CVE-2020-1472) on August 11, 2020. We are reminding our customers that beginning with the February 9, 2021 Security Update release … Read more
Microsoft today released updates to plug more than 80 security holes in its Windows operating systems and other software, including one that is actively being exploited and another which was disclosed prior … Read more
Source: https://msrc-blog.microsoft.com/blog/2021/01/security-update-guide-supports-cves-assigned-by-industry-partners/ Hi Folks, This month we are introducing a new data element for each CVE in the Security Update Guide, called Assigning CNA. First let me back up a bit and … Read more
Source: https://msrc-blog.microsoft.com/blog/2020/12/microsoft-internal-solorigate-investigation-update/ As we said in our recent blog, we believe the Solorigate incident is an opportunity to work together in important ways, to share information, strengthen defenses and respond to attacks. … Read more
Source: https://msrc-blog.microsoft.com/blog/2020/12/december-21st-2020-solorigate-resource-center/ ** UPDATE: ** Microsoft continues to work with partners and customers to expand our knowledge of the threat actor behind the nation-state cyberattacks that compromised the supply chain of SolarWinds … Read more
Source: https://msrc-blog.microsoft.com/blog/2020/12/customer-guidance-on-recent-nation-state-cyber-attacks/ Note: we are updating as the investigation continues. Revision history listed at the bottom. This post contains technical details about the methods of the actor we believe was involved in … Read more
Source: https://msrc-blog.microsoft.com/blog/2020/12/security-update-guide-lets-keep-the-conversation-going/ Hi Folks, We want to continue to highlight changes we’ve made to our Security Update Guide. We have received a lot of feedback, much of which has been very positive. … Read more