Windows Archives - Help Net Security

Windows

October 2020 Patch Tuesday: Microsoft fixes potentially wormable Windows TCP/IP RCE flaw

October 13, 2020

On this October 2020 Patch Tuesday: Microsoft has plugged 87 security holes, including critical ones in the Windows TCP/IP stack and Microsoft Outlook and Microsoft 365 Apps …

HP Device Manager vulnerabilities may allow full system takeover

October 7, 2020

Three vulnerabilities affecting HP Device Manager, an application for remote management of HP Thin Client devices, could be chained together to achieve unauthenticated remote …

Nmap 7.90 released: New fingerprints, NSE scripts, and Npcap 1.0.0

October 5, 2020

Over a year has passed since Nmap had last been updated, but this weekend Gordon “Fyodor” Lyon announced Nmap 7.90. About Nmap Nmap is a widely used free and …

September 2020 Patch Tuesday: Microsoft fixes over 110 CVEs again

September 8, 2020

On this September 2020 Patch Tuesday: Microsoft has plugged 129 security holes, including a critical RCE flaw that could be triggered by sending a specially crafted email to …

September 2020 Patch Tuesday forecast: Back to school?

September 4, 2020

Another month has passed working from home and September Patch Tuesday is upon us. For most of us here in the US, September usually signals back to school for our children and …

Tech Data expands Cloud Solution Factory with Windows Virtual Desktop on Azure Click-to-Run Solution

August 25, 2020

Tech Data announced that it has expanded its Cloud Solution Factory offering with the addition of a new Windows Virtual Desktop on Azure Click-to-Run Solution, which increases …

JumpCloud App for Windows: Enabling secure credential and identity management

August 12, 2020

JumpCloud announced the release of the JumpCloud App for Windows, the latest update to its patent-pending strategy for enabling secure credential and identity management from …

Critical ManageEngine ADSelfService Plus RCE flaw patched

August 10, 2020

A critical vulnerability (CVE-2020-11552) in ManageEngine ADSelfService Plus, an Active Directory password-reset solution, could allow attackers to remotely execute commands …

Researchers flag two zero-days in Windows Print Spooler

August 7, 2020

In May 2020, Microsoft patched CVE-2020-1048, a privilege escalation vulnerability in the Windows Print Spooler service discovered by Peleg Hadar and Tomer Bar from SafeBreach …

August 2020 Patch Tuesday forecast: Planning for the end?

August 7, 2020

There doesn’t seem to be an end in sight to the COVID-19 crisis, but there are some important end-of-life/end-of-support dates we should be aware of when it comes to software. …

TeamViewer flaw could be exploited to crack users’ password

August 6, 2020

A high-risk vulnerability (CVE-2020-13699) in TeamViewer for Windows could be exploited by remote attackers to crack users’ password and, consequently, lead to further …

Bug in widely used bootloader opens Windows, Linux devices to persistent compromise

July 30, 2020

A vulnerability (CVE-2020-10713) in the widely used GRUB2 bootloader opens most Linux and Windows systems in use today to persistent compromise, Eclypsium researchers have …