Security News > 2021 > February > Microsoft Patch Tuesday, February 2021 Edition

Microsoft today rolled out updates to plug at least 56 security holes in its Windows operating systems and other software.

Windows 10 users should note that while the operating system installs all monthly patch roll-ups in one go, that rollup does not typically include.

Windows Server users also should be aware that Microsoft this month is enforcing the second round of security improvements as part of a two-phase update to address CVE-2020-1472, a severe vulnerability that first saw active exploitation back in September 2020.

A domain controller is a server that responds to security authentication requests in a Windows environment, and a compromised domain controller can give attackers the keys to the kingdom inside a corporate network.

Microsoft's initial patch for CVE-2020-1472 fixed the flaw on Windows Server systems, but did nothing to stop unsupported or third-party devices from talking to domain controllers using the insecure Netlogon communications method.

Chrome downloads security updates automatically, but users still need to restart the browser for the updates to fully take effect.

News URL

https://krebsonsecurity.com/2021/02/microsoft-patch-tuesday-february-2021-edition/