article thumbnail

Microsoft Patch Tuesday, June 2019 Edition

Krebs on Security

All four are privilege escalation flaws: CVE-2019-1064 and CVE-2019-1069 affect Windows 10 and later; CVE-2019-1053 and CVE-2019-0973 both affect all currently supported versions of Windows. By the summer of 2019 Google will make Chrome users go into their settings to enable it every time they want to run it.

Backups 224
article thumbnail

Patch Tuesday, March 2019 Edition

Krebs on Security

One interesting patch from Microsoft this week comes in response to a zero-day vulnerability ( CVE-2019-0797 ) reported by researchers at Kaspersky Lab, who discovered the bug could be (and is being) exploited to install malicious software. Staying up-to-date on Windows patches is good.

Internet 220
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Patch Tuesday, August 2019 Edition

Krebs on Security

“According to Microsoft, at least two of these vulnerabilities ( CVE-2019-1181 and CVE-2019-1182 ) can be considered ‘wormable’ and [can be equated] to BlueKeep,” referring to a dangerous bug patched earlier this year that Microsoft warned could be used to spread another WannaCry-like ransomware outbreak.

Backups 244
article thumbnail

Patch Tuesday Lowdown, October 2019 Edition

Krebs on Security

Included in this month’s roundup is something Microsoft actually first started shipping in the third week of September, when it released an emergency update to fix a critical Internet Explorer zero-day flaw ( CVE-2019-1367 ) that was being exploited in the wild. So do yourself a favor and backup your files before installing any patches.

Backups 42
article thumbnail

Patch Tuesday, December 2019 Edition

Krebs on Security

By nearly all accounts, the chief bugaboo this month is CVE-2019-1458 , a vulnerability in a core Windows component (Win32k) that is present in Windows 7 through 10 and Windows Server 2008-2019. A reliable backup means you’re probably not losing your mind when the odd buggy patch causes problems booting the system.

Backups 190
article thumbnail

Patch Tuesday, September 2019 Edition

Krebs on Security

Two of the bugs quashed in this month’s patch batch ( CVE-2019-1214 and CVE-2019-1215 ) involve vulnerabilities in all supported versions of Windows that have already been exploited in the wild. Just make sure you’re backing up your files, preferably following the 3-2-1 backup rule. At some level, it doesn’t matter.

Software 192
article thumbnail

Patch Tuesday, November 2019 Edition

Krebs on Security

Perhaps the most concerning of those critical holes is a zero-day flaw in Internet Exploder Explorer ( CVE-2019-1429 ) that has already seen active exploitation. Finally, Google recently fixed a zero-day flaw in its Chrome Web browser ( CVE-2019-13720 ). So do yourself a favor and backup your files before installing any patches.

Backups 32