Security News

Microsoft says that apps may encounter issues accessing event logs on remote Windows 10 devices unless KB5003637 or later updates are installed on both systems. "Event logs might not be accessible from remote devices unless both devices have updates released June 8, 2021 or later," Microsoft states on the Windows 10 health dashboard.

Microsoft says that apps may encounter issues accessing event logs on remote Windows 10 devices unless KB5003637 or later updates are installed on both systems. "Event logs might not be accessible from remote devices unless both devices have updates released June 8, 2021 or later," Microsoft states on the Windows 10 health dashboard.

Microsoft has now rolled out the Windows 10 'News and Interests' news feed to everyone and enabled it by default on the taskbar, causing many people to seek how to disable it. Starting with last month's Windows 10 preview cumulative updates, Microsoft enabled News and Interests for all users running Windows 10 1909 and later.

Microsoft may have mistakenly leaked that the upcoming next generation of Windows 10 will move away from its current naming scheme and switch to a macOS scheme using geographic locations or development names. "Learn about managing applications in Windows 10 and Windows Sun Valley."

Microsoft on Tuesday released another round of security updates for Windows operating system and other supported software, squashing 50 vulnerabilities, including six zero-days that are said to be under active attack. The flaws were identified and resolved in Microsoft Windows,.

"These attacks exploited a chain of Google Chrome and Microsoft Windows zero-day exploits. While we were not able to retrieve the exploit used for remote code execution in the Chrome web browser, we were able to find and analyze an elevation of privilege exploit that was used to escape the sandbox and obtain system privileges," Larin explained. According to Kaspersky, the two Windows flaws were chained to an exploit for a different Chrome vulnerability to plant high-end malware on specific targets running Windows.

Kaspersky security researchers discovered a new threat actor dubbed PuzzleMaker, who has used a chain of Google Chrome and Windows 10 zero-day exploits in highly-targeted attacks against multiple companies worldwide. The zero-day exploit chain deployed in the campaign used a remote code execution vulnerability in the Google Chrome V8 JavaScript engine to access the targeted systems.

As part of the June 2021 Patch Tuesday, Microsoft has released new cumulative updates for all supported version of Windows, including Windows 10 KB5003637 & KB5003635 for the Windows 10 May 2021 Update and Windows 10 October 2020 Update. The cumulative updates include security fixes for PCs with May 2021 Update, October 2020 Update and May 2020 Update.

A reverse engineer has discovered what is claimed to be "The first known malware targeting Windows containers to compromise cloud environments," a sentence to put any system administrator on edge. Building on work published in December of last year on reverse-engineering Windows containers, security researcher Daniel Prizmant's latest discovery - made during his day job at Palo Alto Networks' Unit 42 security arm - looks to punch holes in Kubernetes clusters, and has apparently succeeded in doing so across at least 23 known targets.

Security researchers have discovered the first known malware, dubbed "Siloscope," targeting Windows Server containers to infect Kubernetes clusters in cloud environments. "Siloscape is heavily obfuscated malware targeting Kubernetes clusters through Windows containers," said Unit 42 researcher Daniel Prizmant.