A Silverlight vulnerability patched yesterday by Microsoft could be tied to a Russian hacker who tried to sell a similar zero day to the Hacking Team.
Browsing Tag: Microsoft
Microsoft only released nine bulletins for its first Patch Tuesday of 2016, but six of them are marked critical and seven can lead to remote code execution.
Tuesday’s impending deadline ending security support for Internet Explorer 8, 9 and 10 is putting companies on notices about moving off older versions of the browser.
Mike Mimoso and Chris Brook discuss the week in news: How the Dutch are opening encryption with open arms, the end of support for IE 8, 9, and 10, and the latest bounty offered up by Zerodium.
Microsoft said starting March 31, 2016 it will detect and begin removing programs such as Superfish adware that inject ads into browsers and expose users to SSL interception.
Microsoft patches 71 vulnerabilities in its December Patch Tuesday security bulletins, including two currently under attack. It has also revoked a leaked Xbox Live certificate and private key.
Microsoft has added opt-in protection for Windows enterprise users that blocks potentially unwanted programs and applications.
Microsoft claims a recent update to Edge prevents the loading of unsigned DLLs without consent, something that should make it more difficult for an attacker to compromise the browser.
Microsoft addressed an issue in its hypervisor, Hyper-V, this week, that could lead to a denial of service condition.
Microsoft pushed out 12 bulletins as part of November’s Patch Tuesday, including four critical updates, all of which can lead to remote code execution.