No Image

Prevent the impact of a Linux worm by updating Exim (CVE-2019-10149)

2019-06-15 KENNETH 0

Prevent the impact of a Linux worm by updating Exim (CVE-2019-10149) This week, MSRC confirmed the presence of an active Linux worm leveraging a critical Remote Code Execution (RCE) vulnerability, CVE-2019-10149, in Linux Exim email servers running Exim version 4.87 to 4.91. Azure customers running VMs with Exim 4.92 are not affected by this vulnerability.  Azure has controls in place to help limit the spread of this worm from work we’ve already done to combat SPAM, but customers using the vulnerable software would still be susceptible to infection.  Customers using Azure virtual machines (VMs) are responsible for updating the operating systems running on their VMs. As this vulnerability is being actively exploited by worm activity, MSRC urges customers to observe Azure security best practices and patterns and to patch or restrict network access to VMs running the affected versions of Exim.  [ more… ]

No Image

June 2019 security update release

2019-06-12 KENNETH 0

June 2019 security update release Today, we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates.    More information about this month’s security updates can be found on the Security Update Guide.   Source: June 2019 security update release

BlueHat Shanghai 2019: Amplifying the power of defensive partnerships around the world

2019-06-01 KENNETH 0

BlueHat Shanghai 2019: Amplifying the power of defensive partnerships around the world Earlier this week BlueHat Shanghai brought together security researchers and hundreds of cybersecurity professionals from China and across Asia to explore the latest topics in cybersecurity research. Including presentations from Qihoo 360, Baidu, Alibaba and the Chinese Academy of Sciences, BlueHat Shanghai highlighted incredibly talented Chinese researchers and focused on cutting edge topics including container and IoT security.    In the conference kick off, Eric Doerr (General Manager, MSRC) shared how researchers in China have helped protect Microsoft customers over the last year by reporting high impact vulnerabilities under Coordinated Vulnerability Disclosure. Many of these researchers qualified for bounty awards as well; Chinese researchers dominate the Microsoft Edge bounty program, and report a substantial portion of submissions made to the Windows Insider Preview bounty program.   Microsoft has long invested [ more… ]

No Image

A Reminder to Update Your Systems to Prevent a Worm

2019-05-31 KENNETH 0

A Reminder to Update Your Systems to Prevent a Worm On May 14, Microsoft released fixes for a critical Remote Code Execution vulnerability, CVE-2019-0708, in Remote Desktop Services – formerly known as Terminal Services – that affects some older versions of Windows. In our previous blog post on this topic we warned that the vulnerability is ‘wormable’, and that future malware that exploits this vulnerability could propagate from vulnerable computer to vulnerable computer in a similar way as the WannaCry malware spread across the globe in 2017.   Microsoft is confident that an exploit exists for this vulnerability, and if recent reports are accurate, nearly one million computers connected directly to the internet are still vulnerable to CVE-2019-0708. Many more within corporate networks may also be vulnerable. It only takes one vulnerable computer connected to the internet to provide a potential [ more… ]

No Image

Microsoft Launches a New Recognition Program for MAPP Partners

2019-05-30 KENNETH 0

Microsoft Launches a New Recognition Program for MAPP Partners There are many dedicated people and organizations who contribute to the protection and security of our common customers. For years, Microsoft has recognized security researchers for helping protect the ecosystem. Now, we’re announcing the launch of a new program to better recognize and thank Microsoft Active Protections Program (MAPP) partners for all they do to protect our customers, including awards and evangelism based on their contributions. MAPP provides better protections for customers through: Early access to monthly security release information, allowing partners to proactively apply protections prior to the release date Sharing of threat indicators Reporting vulnerabilities in Microsoft products and following Coordinated Vulnerability Disclosure (CVD) In the last six months, MAPP partners have provided 430 unique vulnerability reports and submitted nearly 158 million threat indicators. This data helps Microsoft harden [ more… ]