Security News

As Microsoft begins to utilize its Known Issue Rollback feature to release Windows 10 fixes quickly, users are discovering that modifying privacy settings may prevent these fixes from being installed. Microsoft routinely conducts experiments with Windows 10 users to determine if a feature is commonly used, if a change in a feature makes it more useful, or to introduce features to a small test population.

Microsoft has announced that the Windows May 10th 2021 Update is complete and being prepared for release. Windows Insiders in the 'Beta' and 'Release' channels have been testing this build since April 13th. While Microsoft has not provided a specific date when the May 2021 Update would begin to rollout, it is likely to be released as an optional update during the upcoming May 2021 Patch Tuesday updates.

Microsoft has released the optional KB5001391 Preview cumulative update for Windows 10 2004 and Windows 10 20H2. This cumulative update is Microsoft's April 2021 monthly "C" update that allows users and admins to preview the upcoming fixes scheduled for release in the forthcoming May 2021 Patch Tuesday. You can install the update by going into Settings, clicking on Windows Update, and selecting 'Check for Updates.

New Microsoft Graph APIs released today in public preview allow developers and IT professionals to manage Windows 10 updates and expedite Windows 10 security updates in enterprise environments. "By connecting deployment service capabilities with Microsoft Graph, app developers can easily build rich update management tools and extend these experiences with contextual user data," Microsoft Principal Program Manager David Mebane explained.

New Microsoft Graph APIs released today in public preview allow developers and IT professionals to manage Windows 10 updates and expedite Windows 10 security updates in enterprise environments. "By connecting deployment service capabilities with Microsoft Graph, app developers can easily build rich update management tools and extend these experiences with contextual user data," Microsoft Principal Program Manager David Mebane explained.

A newly identified NTLM relay attack abuses a remote procedure call vulnerability to enable elevation of privilege, researchers from cybersecurity firm SentinelOne reveal. The researchers used a DCOM client that was instructed to connect to a RPC server, operation that involved two NTLM authentications, one without the "Sign flag" being set, and also leveraged the fact that the DCOM activation service can be abused to trigger RPC authentication.

Notorious Windows malware Emotet was automatically wiped from computers yesterday by European law enforcement using a customized DLL. This specially crafted time bomb caused the software to self-destruct on Sunday, April 25. Ch's Emotet portal showed none of the Emotet C2 servers it tracks were online.

The Windows 10 package manager is getting some new and exciting features that allow you to manage any installed applications directly from the command line. Last year, Microsoft released a Windows 10 package manager called Winget that allows users to install popular apps from a curated repository managed by Microsoft.

Microsoft has released an emergency fix for gaming issues introduced by the Windows 10 2004 and Windows 10 20H2 KB5001330 update. With this release of the KB5000842 of the Windows 10 preview cumulative update at the end of March and in the subsequent release of April's KB5001330 update, Windows 10 users have been experiencing performance issues when playing games.

A recently discovered cryptomining botnet is actively scanning for vulnerable Windows and Linux enterprise servers and infecting them with Monero miner and self-spreader malware payloads. While, at first, it was using a multi-component architecture with the miner and worm modules, the botnet has been upgraded to use a single binary capable of mining and auto-spreading the malware to other devices.