Security News

New Microsoft Graph APIs released today in public preview allow developers and IT professionals to manage Windows 10 updates and expedite Windows 10 security updates in enterprise environments. "By connecting deployment service capabilities with Microsoft Graph, app developers can easily build rich update management tools and extend these experiences with contextual user data," Microsoft Principal Program Manager David Mebane explained.

New Microsoft Graph APIs released today in public preview allow developers and IT professionals to manage Windows 10 updates and expedite Windows 10 security updates in enterprise environments. "By connecting deployment service capabilities with Microsoft Graph, app developers can easily build rich update management tools and extend these experiences with contextual user data," Microsoft Principal Program Manager David Mebane explained.

A newly identified NTLM relay attack abuses a remote procedure call vulnerability to enable elevation of privilege, researchers from cybersecurity firm SentinelOne reveal. The researchers used a DCOM client that was instructed to connect to a RPC server, operation that involved two NTLM authentications, one without the "Sign flag" being set, and also leveraged the fact that the DCOM activation service can be abused to trigger RPC authentication.

Notorious Windows malware Emotet was automatically wiped from computers yesterday by European law enforcement using a customized DLL. This specially crafted time bomb caused the software to self-destruct on Sunday, April 25. Ch's Emotet portal showed none of the Emotet C2 servers it tracks were online.

The Windows 10 package manager is getting some new and exciting features that allow you to manage any installed applications directly from the command line. Last year, Microsoft released a Windows 10 package manager called Winget that allows users to install popular apps from a curated repository managed by Microsoft.

Microsoft has released an emergency fix for gaming issues introduced by the Windows 10 2004 and Windows 10 20H2 KB5001330 update. With this release of the KB5000842 of the Windows 10 preview cumulative update at the end of March and in the subsequent release of April's KB5001330 update, Windows 10 users have been experiencing performance issues when playing games.

A recently discovered cryptomining botnet is actively scanning for vulnerable Windows and Linux enterprise servers and infecting them with Monero miner and self-spreader malware payloads. While, at first, it was using a multi-component architecture with the miner and worm modules, the botnet has been upgraded to use a single binary capable of mining and auto-spreading the malware to other devices.

Microsoft has released the optional KB5001396 preview cumulative update for Windows 10 1909 with numerous fixes that increase performance in the operating system. This cumulative update is Microsoft's April 2021 monthly "C" update that allows users and admins to preview the upcoming fixes scheduled for release in the forthcoming May 2021 Patch Tuesday.

Update 4/24/21: Microsoft has begun pushing out a fix for the Windows 10 KB5001330 gaming issues. An NVIDIA staff member has suggested users roll back to an earlier version of Windows 10 to resolve gameplay issues on devices using NVIDIA GPUs.

The new Windows 10 News and Interests taskbar news feed feature is now rolling out to Windows 10 devices worldwide. Similar to Google Discover, News and Interests will build an interests profile for logged-in users based on their historically read content.