Case Study – How can the MyIT Program prevent real-world attacks
When talking with perspective new clients about our MyIT Program, one question that comes up quite a bit is something like “Yeah, I get that you do some stuff but…
Read moreApril 2025 News and Updates
Updates Microsoft has released updates to ~121 vulnerabilities in this latest release including one in the Common Log File System (CLFS) CVE-2025-29824 that’s being actively exploited and three ( CVE-2025-26671, CVE-2025-27480 and CVE-2025-27482) in…
Read moreMarch 2025 News & Updates
Updates There were only ~50 patches released this month (I’ve seen 50 to 57) but, in those 50 were patches for six zero day vulnerabilities (or seven, depending on who…
Read moreFebruary 2025 News & Updates
Updates According to SANS, Microsoft is patching 141 vulnerabilities (several other outlets are reporting 55) including at least two (possibly four) zero day vulnerabilities that are being actively exploited in…
Read moreDecember 2024 News & Updates
Updates Patch Tuesday, December 2024, the last scheduled updates for 2024 from Microsoft. In this release, Microsoft has patched 70 (or 71, depending on who you ask) bugs including one…
Read moreNovember 2024 News and Updates
Updates The November 2024 Patch Tuesday from Microsoft includes patches for at least 89 vulnerabilities, including two zero day vulnerabilities (CVE-2024-49039, a privilege execution vulnerability in Windows Task Scheduler and…
Read moreOctober 2024 News & Updates
Updates The October 2024 Patch Tuesday from Microsoft includes patches for at least 117 bugs, including two zero day vulnerabilities (CVE-2024-43573 and CVE-2024-43572). Three of the vulnerabilities are rated critical…
Read moreSeptember 2024 News and Updates
Updates The September 2024 Patch Tuesday from Microsoft included patches for at least 79 security vulnerabilities, including several that address vulnerabilities that are being actively exploited and one particularly interesting…
Read moreAugust 2024 News and Updates
Updates The July 2024 Patch Tuesday from Microsoft addresses at least 139 issues and includes at least two zero-day vulnerabilities (CVE-2024-38080 and CVE-2024-38112) that, per Microsoft, are being actively used…
Read moreAnnouncement – Project Lazarus
I alluded to it in my After Action Report for the CrowdStrike incident but one of the takeaways was that the fix was a relatively simple one but many administrators…
Read more